AWS Services in Scope by Compliance Program

— Esquema Nacional de Seguridad (ENS)

We include generally available services in the scope of our compliance efforts based on the expected use case, feedback and demand. If a service is not currently listed as in scope of the most recent assessment, it does not mean that you cannot use the service. It is part of the shared responsibility for your organization to determine the nature of the data. Based on the nature of what you are building on AWS, you should determine if the service will process or store customer data and how it will or will not impact the compliance of your customer data environment.

We encourage you to discuss your workload objectives and goals with your AWS account team; they will be able to evaluate your proposed use case and architecture, and how our security and compliance processes overlay that architecture. Need to connect with an AWS business representative? 

This webpage provides a list of AWS Services in Scope of AWS assurance programs. Unless specifically excluded, generally available features of each of the services are considered in scope of the assurance programs, and are reviewed and tested at the next opportunity for assessment. Refer to the AWS Documentation for the features of an AWS service.

= This service is currently in scope and is reflected in current reports. For more specific details on status, please refer to each compliance program tab below.

 

Click here for full list of services covered under the AWS compliance programs.

ENS High
SERVICES / PROGRAMS  ENS High
Amazon API Gateway
Amazon AppStream 2.0
Amazon Athena
Amazon Augmented AI
Amazon Aurora
Amazon Chime
Amazon Chime SDK
Amazon Cloud Directory
Amazon CloudFront [excludes content delivery through Amazon CloudFront Embedded Point of Presences]
Amazon CloudWatch
Amazon CloudWatch Events
Amazon CloudWatch Logs
Amazon CloudWatch SDK Metrics for Enterprise Support
Amazon Cognito
Amazon Comprehend
Amazon Comprehend Medical
Amazon Connect [excludes Wisdom, VoiceID and High-Volume Outbound Communications]
Amazon Detective
Amazon DevOps Guru
Amazon DocumentDB (with MongoDB compatibility)
Amazon DynamoDB
Amazon Elastic Block Store
Amazon Elastic Compute Cloud
Amazon Elastic Container Registry
Amazon Elastic Container Service
Amazon Elastic File System
Amazon Elastic Kubernetes Service
Amazon Elastic MapReduce
Amazon ElastiCache for Redis
Amazon FSx
Amazon Forecast
Amazon Fraud Detector
Amazon FreeRTOS
Amazon Glue DataBrew
Amazon GuardDuty
Amazon Inspector
Amazon Kendra
Amazon Keyspaces (for Apache Cassandra)
Amazon Kinesis Data Analytics
Amazon Kinesis Data Firehose
Amazon Kinesis Data Streams
Amazon Kinesis Video Streams
Amazon Lex
Amazon Macie
Amazon Managed Streaming for Apache Kafka
Amazon MemoryDB for Redis
Amazon MQ
Amazon Neptune
Amazon OpenSearch Service
Amazon Personalize
Amazon Pinpoint
Amazon Polly
Amazon Quantum Ledger Database (QLDB)
Amazon QuickSight
Amazon Redshift
Amazon Rekognition
Amazon Relational Database Service
Amazon Route 53
Amazon Route 53 Resolver
Amazon S3 Glacier
Amazon SageMaker
Amazon Simple Email Service (SES)
Amazon SimpleDB
Amazon Simple Notification Service 
Amazon Simple Queue Service
Amazon Simple Storage Service
Amazon Simple Workflow Service
Amazon Textract
Amazon Timestream
Amazon Transcribe
Amazon Translate
Amazon Virtual Private Cloud
Amazon WorkDocs
Amazon WorkLink
Amazon WorkMail
Amazon WorkSpaces
AWS Amplify
AWS App Mesh
AWS App Runner
AWS AppFlow
AWS Application Migration Service
AWS AppSync
AWS Audit Manager
AWS Artifact
AWS Auto Scaling
AWS Backup
AWS Batch
AWS Certificate Manager
AWS Chatbot
AWS Cloud9
AWS CloudEndure
AWS CloudFormation
AWS CloudHSM
AWS Cloud Map
AWS CloudShell
AWS CloudTrail
AWS CodeBuild
AWS CodeCommit
AWS CodeDeploy
AWS CodePipeline
AWS CodeStar
AWS Config
AWS Control Tower
AWS Database Migration Service
AWS Data Exchange
AWS DataSync
AWS Direct Connect
AWS Directory Service
AWS Elastic Disaster Recovery (DRS, Dirrus)
AWS Elastic Beanstalk
AWS Elemental Appliances & Software
AWS Elemental MediaConnect
AWS Elemental MediaConvert
AWS Elemental MediaLive
AWS Firewall Manager
AWS Global Accelerator
AWS Glue
AWS Ground Station
AWS HealthLake
AWS Identity and Access Management
AWS IAM Identity Center (successor to AWS Single Sign-On) 
AWS IoT 1-Click
AWS IoT Analytics
AWS IoT Core
AWS IoT Device Defender
AWS IoT Device Management
AWS IoT Events
AWS IoT Greengrass
AWS IoT SiteWise
AWS IoT Things Graph
AWS Key Management Service
AWS Lambda
AWS License Manager
AWS Location Service
AWS Managed Services
AWS Network Firewall
AWS OpsWorks CM [Includes Chef Automate and Puppet Enterprise]
AWS OpsWorks Stacks
AWS Organizations
AWS Outposts
AWS Personal Health Dashboard
AWS Private Certificate Authority
AWS Resource Access Manager
AWS Resource Groups
AWS RoboMaker
AWS Secrets Manager
AWS Security Hub
AWS Server Migration Service
AWS Serverless Application Repository
AWS Service Catalog
AWS Shield
AWS Snowball
AWS Snowball Edge
AWS Snowmobile
AWS Step Functions
AWS Storage Gateway
AWS Systems Manager
AWS Transfer Family
AWS Trusted Advisor
AWS Web Application Firewall
AWS Wavelength
AWS X-Ray
EC2 Image Builder
Elastic Load Balancing
VM Import/Export

Want More Information About Services in Scope?

Contact Us