Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up for free
FinTech スタートアップのセキュリティチェックシートとの向き合い方 / AWS FinTech Bootcamp! Compliance
Yuichiro SAITO
PRO
November 10, 2022
Technology
0
140
FinTech スタートアップの セキュリティチェックシートとの向き合い方 / AWS FinTech Bootcamp! Compliance
AWS FinTech Bootcamp! 2022/11/15
Yuichiro SAITO
PRO
November 10, 2022
Tweet
Share
More Decks by Yuichiro SAITO
See All by Yuichiro SAITO
クラウドを積極活用したサービスの開発のために / AWS FinTech Bootcamp! Basic
koemu
PRO
0
71
ワークショップFinTech アーキテクチャ / AWS FinTech Bootcamp! Workshop
koemu
PRO
0
71
正しい理解で作る安心安全な FinTech の IT インフラ / tech play aws 2022 2
koemu
PRO
1
120
AWSの「今」 -PHPのコードを素早く動かすためのサービスのご紹介 / PHPCon2022 AWS Japan Session
koemu
PRO
2
1.3k
PdMとエンジニアのより良いコミュニケーションに向けて / Improve communication between Product Manager and Software Engineer
koemu
PRO
1
220
フェイズ別・スタートアップ企業への技術選定 シード編 #AWS #AWSStartup / Startup Tech 101 for Seed
koemu
PRO
0
370
AWSを使って送金機能を実装してみよう - 「sunabar-GMOあおぞらネット銀行API実験場-」コミュニティイベント第6弾
koemu
PRO
0
610
Hardening II SU Softening Day - Team カムイ Presentation
koemu
PRO
0
3.1k
Software Development at Mercari #ioi2018
koemu
PRO
0
760
Other Decks in Technology
See All in Technology
ChatGPT for Hacking
anugrahsr
0
120
Pentesting Password Reset Functionality
anugrahsr
0
190
オンプレk8sとEKSの並行運用の実際
ch1aki
0
140
ML PM, DS PMってどんな仕事をしているの?
line_developers
PRO
1
210
USB PD で迎える AC アダプター大統一時代
puhitaku
0
670
証明書って何だっけ? 〜AWSの中間CA移行に備える〜
minorun365
3
2k
プログラミング支援AI GitHub Copilot すごいの話
moyashi
0
280
ECテックカンファレンス2023 EC事業部のモバイル開発2023
tatsumi0000
0
160
MoT/コネヒト/Kanmu が語るプロダクト開発xデータ分析 - 分析から機械学習システムの開発まで一人で複数ロールを担う大変さ
masatakashiwagi
2
570
Deep dive in Reserved Instance ~脳死推奨量購入からの脱却~
kzkmaeda
0
320
re:Invent re:Cap / AWS Lambda Updates
bulbulpaul
1
140
EMになって最初の失敗談 - コミュニケーション編 -
fukuiretu
1
330
Featured
See All Featured
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
7
560
KATA
mclloyd
12
9.7k
Building a Modern Day E-commerce SEO Strategy
aleyda
6
4.5k
No one is an island. Learnings from fostering a developers community.
thoeni
12
1.5k
Agile that works and the tools we love
rasmusluckow
320
20k
Six Lessons from altMBA
skipperchong
15
2.3k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
500
130k
Designing Experiences People Love
moore
130
22k
Automating Front-end Workflow
addyosmani
1351
200k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
31
20k
Git: the NoSQL Database
bkeepers
PRO
418
60k
Become a Pro
speakerdeck
PRO
6
3.2k
Transcript
© 2022, Amazon Web Services, Inc. or its affiliates. All
rights reserved. FinTech 2022/11/15
• ( ) • • 20 • Amazon Lightsail, Amazon
Route 53 @koemu
• − • FISC FISC •
Disclaimer • • • AWS • AWS
1. 2. AWS 3. 4. 5.
None
✖ ( ) ( FinTech) ( )
z ⾒
FinTech Startups ( ) ( ) FISC PCI DSS NIST
SP800 ISMS SOC2 FedRAMP ISO/IEC 27001 3850
FISC ( ) 2022 7 10 FISC --- (FISC )
1985 12 FISC (FISC )
AWS ( ) ( ) https://aws.amazon.com/jp/compliance/shared-responsibility-model/
AWS
FISC (FISC ) FISC AWS AWS https://aws.amazon.com/jp/compliance/fisc/
AWS AWS AWS https://d0.awsstatic.com/whitepapers/compliance/JP_Whitepapers/AWS_Risk_and_Complia nce_Overview_JP.pdf
AWS Artifact AWS Adobe Acrobat FISC SOC2 PCI ISO27001
None
AWS NO FISC / YES FISC AWS AWS Artifact AWS
• 1) • − AWS Fargate − Amazon Aurora MySQL
蓄 − Amazon Elastic Load Balancer AWS WAF 蓄 AWS Cloud VPC Amaazon CloudFront AWS WAF Elastic Load Balancing AWS Fargate Amazon Aurora
• − 1) • − AWS AWS AWS
FISC • − 1) • FISC 49 →
• − 1) • − ✖: ※ − : AWS
− : AWS ISO/IEC 27001 AWS AWS AWS • − ⾒ AWS ⾒
None
AWS Security Hub AWS Security Hub FinTech https://aws.amazon.com/jp/security-hub/
FISC Well-Architected Framework FSI Lens for FISC Baseline Environment on
AWS for FSI 3 https://github.com/aws-samples/baseline-environment-on-aws-for-financial-services-institute
Fintech Blueprint on AWS FinTech AWS CloudFormation https://aws.amazon.com/jp/quickstart/architecture/fintech-blueprint/
AWS PCI DSS PCI DSS AWS https://d1.awsstatic.com/whitepapers/ja_JP/compliance/pci-dss-compliance-on-aws.pdf
NIST SP800-53, 171 AWS AWS https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist-800-53_rev_5.html https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist_800-171.html
Q&A
( ) • − • FISC FISC •
Thank you © 2022, Amazon Web Services, Inc. or its
affiliates. All rights reserved.