Today, I’m very happy to announce the release of Cloud Audit Academy AWS-specific (CAA AWS-specific). It is a brand new, accelerated training curriculum for auditing AWS Cloud implementations, and is made for auditors, regulators, or anyone functioning inside a control framework.

Over the past couple of years, auditing security in the cloud is becoming among the fastest growing questions among Amazon Web Services (AWS) customers, across several industries and all over the global world. Listed below are the two pain factors that I hear about frequently:

• Engineering teams desire to shift regulatory frameworks compliant workloads to AWS to benefit from its innovation capabilities, but risk and security groups are uncertain how AWS might help them satisfy their compliance needs through audits.
• Compliance teams desire to successfully audit the cloud conditions and make use of the available protection control options which are included in the cloud, however the legacy audit control and procedures frameworks are designed for an on-premises environment. The variations require some enhancement and reconciliation function to be achieved on compliance programs, audit procedures, and auditor instruction.

To help deal with these issues for not merely AWS customers but also for any kind of auditor or compliance group facing cloud migration, we announced Cloud Audit Academy Cloud Agnostic (CAA Cloud Agnostic) at re:Inforce 2019. This foundational, first-of-its-kind, training course provides baseline understanding on auditing in the cloud and in knowing the differences in charge operation, style, and auditing. It really is cloud agnostic and will benefit safety and compliance specialists in any industry-which includes independent third-party auditors. June 2019 since its launch in, 1,400 learners have implemented this cloud audit understanding path, with 91 % of participants saying they would recommend the workshop to others.

Today we’re releasing the next thing of this education program so, Cloud Audit Academy AWS-specific. Offered or in-person virtually, CAA AWS-specific can be an instructor-brought workshop on addressing dangers and auditing protection in the AWS Cloud, with a concentrate on the audit and security tools supplied by AWS. All instructors have expert audit industry experience, present audit credentials, and keep maintaining AWS Solutions Architect credentials.

Here are four what to find out about CAA AWS-specific and what it provides audit and compliance groups:

1. Content was made with PricewaterhouseCoopers (PwC)
   PricewaterhouseCoopers caused us to build up the curriculum content, getting their expertise within independent control and danger auditing.“With so quite a few customers already within the cloud-or prepared to be-we’ve seen an enormous increase in the necessity to fulfill regulatory and compliance specifications. We’re excited to possess combined our danger and controls encounter with the energy of AWS to produce a curriculum where customers will not only [leverage AWS to greatly help them] satisfy their compliance requirements, but unlock the full total value of these cloud expense.” – Paige Hayes, Global Accounts Head at PwC
2. Attendees earn continuing expert education credits
   Predicated on suggestions from CAA Cloud Agnostic, we have now offer continuing expert education and learning (CPE) credits to attendees. Completion of CAA AWS-specific allows attendees to earn 28 CPE credits towards the International Information System Safety Accreditation Consortium, or (ISC)², certifications, and 18 CPE credits towards any Worldwide Information Assurance Qualification (GIAC).
3. Education helps boost self-confidence when auditing the AWS cloud
   Our clients have verified repeatedly that running delicate workloads in AWS could be better than in on-premises conditions. However, too little knowledge and updated procedures for implementing, monitoring, and proving compliance in a few difficulty has been due to the cloud. Through CAA AWS-specific, you’ll get critical exercising to are more comfortable and self-confident focusing on how to audit the AWS atmosphere with accuracy.“Our FSI customer conversations tend to be focused on safety and compliance controls. Leveraging the particular Cloud Audit Academy allows our team to teach the external and inner auditors of our clients. CAA offers them the required tools and information to judge and gain comfort making use of their AWS control atmosphere firsthand. The various depth and levels concentrate on everything from simple cloud auditing to diving deeper in to the domains which align with this governance and manage domains. We reference crucial AWS services that clients can utilize to generate an effective control atmosphere that [assists to meet up their] regulatory and audit anticipations.” – Jeff (Axe) Axelrad, Compliance Supervisor, AWS Financial Providers
4. Instruction enables the governance, danger, and compliance professional
   In four times of CAA AWS-particular, you’ll become more more comfortable with subjects like control domains, system management, vulnerability management, monitoring and logging, incident response, and common knowledge about compliance settings in the cloud.“Along with [using AWS to greatly help support and keep maintaining their compliance], our clients need to be capable to clearly talk to their exterior regulators and auditors HOW compliance is achieved. CAA doesn’t educate auditors how exactly to audit, but instead accelerates the learning essential to know how the control landscape modifications specifically.” – Jesse Skibbe, Sr. Practice Manager, AWS Expert Services

CAA Cloud Agnostic provides several foundational principles and is really a prerequisite to CAA AWS-specific. It really is available for free on-line at our AWS Training and Certification learning library, or it is possible to contact your accounts manager to get a one-day instructor-led work out in person.

If it appears like Cloud Audit Academy coaching would benefit you as well as your team, get in touch with our AWS Security Assurance Services team or get in touch with your AWS account supervisor. For more information, browse the newly updated Security Audit Learning Path.

For those who have feedback concerning this post, submit remarks in the Comments section below.

Want a lot more AWS Security how-to articles, news, and show announcements? Adhere to us on Twitter.