We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.
If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”
Customize cookie preferences
We use cookies and similar tools (collectively, "cookies") for the following purposes.
Essential
Essential cookies are necessary to provide our site and services and cannot be deactivated. They are usually set in response to your actions on the site, such as setting your privacy preferences, signing in, or filling in forms.
Performance
Performance cookies provide anonymous statistics about how customers navigate our site so we can improve site experience and performance. Approved third parties may perform analytics on our behalf, but they cannot use the data for their own purposes.
Allowed
Functional
Functional cookies help us provide useful site features, remember your preferences, and display relevant content. Approved third parties may set these cookies to provide certain site features. If you do not allow these cookies, then some or all of these services may not function properly.
Allowed
Advertising
Advertising cookies may be set through our site by us or our advertising partners and help us deliver relevant marketing content. If you do not allow these cookies, you will experience less relevant advertising.
Allowed
Blocking some types of cookies may impact your experience of our sites. You may review and change your choices at any time by selecting Cookie preferences in the footer of this site. We and selected third-parties use cookies or similar technologies as specified in the AWS Cookie Notice.
Your privacy choices
We display ads relevant to your interests on AWS sites and on other properties, including cross-context behavioral advertising. Cross-context behavioral advertising uses data from one site or app to advertise to you on a different company’s site or app.
To not allow AWS cross-context behavioral advertising based on cookies or similar technologies, select “Don't allow” and “Save privacy choices” below, or visit an AWS site with a legally-recognized decline signal enabled, such as the Global Privacy Control. If you delete your cookies or visit this site from a different browser or device, you will need to make your selection again. For more information about cookies and how we use them, please read our AWS Cookie Notice.
Dieser Inhalt steht in der ausgewählten Sprache nicht zur Verfügung. Wir arbeiten beständig daran, unsere Inhalte auch in der ausgewählten Sprache zur Verfügung zu stellen. Vielen Dank für Ihre Geduld.
Since day one, AWS has deeply invested into our culture of security. Security is prioritized by our leadership and built into our organizational structure. Everyone, regardless of role, views security as a shared responsibility. Security advocates and advisors are embedded in our teams to share their expertise, and innovation empowers our people to move fast while staying secure.
We’ve found that building and maintaining a culture of security requires constant investment and focus on four key principles.
How AWS sustains a strong culture of security
Culture of security principles at work within AWS
Security is a top-down priority
At AWS, security is deeply ingrained into our organizational structure and decision-making. Our security teams report directly to the CEO while also being deeply embedded in our respective business units. Weekly meetings with executive leadership examines security metrics, connect data to business outcomes, and ensure alignment on strategic security issues. This top-down commitment reinforces that security accelerates business objectives and enhances customer experiences.
AWS operates with a strong ownership model built around our culture of security. Everyone, from executives to engineers, embraces a security-first mindset. Service teams are fully responsible for the security of the service that they deliver. Security is ingrained into every product roadmap, engineering plan, and weekly stand-up, just as much as capabilities, performance, and cost. We encourage teams to raise their hand and ask for help when there’s even a hint of a security issue.
AWS Security provides critical capabilities and services that enable our engineering and service teams to fulfill their security responsibilities effectively. This includes training, threat modeling tools, code scanning frameworks, design reviews, penetration testing, and security reviews of new services and features. Security teams are empowered to make a go or no-go decision with respect to each and every release, and always err on the side of maintaining the high security bar our customers expect from AWS.
At AWS, people are our biggest asset, driving us to build security innovations that improve their work experience, remove barriers, and enable sound security decisions. We use artificial intelligence (AI) to accelerate secure software development and complement human expertise. We use security automation to reduce mundane tasks, reduce human error, and scale security best practices. And, we use automated reasoning to detect misconfigurations and prove that our security controls are effective.
"Delivering secure and operationally excellent services for our customers is, and will forever remain, our top priority. Andy Jassy said on my very first day that ensuring security for our customers is "job zero". That hasn't changed in 18 years and it won't change under my leadership."