Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
FinTech スタートアップのセキュリティチェックシートとの向き合い方 / AWS Fin...
Search
Yuichiro SAITO
PRO
November 10, 2022
Technology
0
640
FinTech スタートアップの セキュリティチェックシートとの向き合い方 / AWS FinTech Bootcamp! Compliance
AWS FinTech Bootcamp! 2022/11/15
Yuichiro SAITO
PRO
November 10, 2022
Tweet
Share
More Decks by Yuichiro SAITO
See All by Yuichiro SAITO
クラウドを積極活用したサービスの開発のために / AWS FinTech Bootcamp! Basic
koemu
PRO
0
280
ワークショップFinTech アーキテクチャ / AWS FinTech Bootcamp! Workshop
koemu
PRO
0
260
正しい理解で作る安心安全な FinTech の IT インフラ / tech play aws 2022 2
koemu
PRO
1
330
AWSの「今」 -PHPのコードを素早く動かすためのサービスのご紹介 / PHPCon2022 AWS Japan Session
koemu
PRO
2
2.1k
PdMとエンジニアのより良いコミュニケーションに向けて / Improve communication between Product Manager and Software Engineer
koemu
PRO
1
620
フェイズ別・スタートアップ企業への技術選定 シード編 #AWS #AWSStartup / Startup Tech 101 for Seed
koemu
PRO
0
510
AWSを使って送金機能を実装してみよう - 「sunabar-GMOあおぞらネット銀行API実験場-」コミュニティイベント第6弾
koemu
PRO
0
1.1k
Hardening II SU Softening Day - Team カムイ Presentation
koemu
PRO
0
3.9k
Software Development at Mercari #ioi2018
koemu
PRO
0
1.2k
Other Decks in Technology
See All in Technology
CNCFの視点で捉えるPlatform Engineering - 最新動向と展望 / Platform Engineering from the CNCF Perspective
hhiroshell
0
140
Dify on AWS 環境構築手順
yosse95ai
0
110
Dylib Hijacking on macOS: Dead or Alive?
patrickwardle
0
450
OCIjp_Oracle AI World_Recap
shinpy
1
170
研究開発部メンバーの働き⽅ / Sansan R&D Profile
sansan33
PRO
3
20k
Zephyr(RTOS)にEdge AIを組み込んでみた話
iotengineer22
1
280
あなたの知らない Linuxカーネル脆弱性の世界
recruitengineers
PRO
3
150
Railsの話をしよう
yahonda
0
170
Claude Codeを駆使した初めてのiOSアプリ開発 ~ゼロから3週間でグローバルハッカソンで入賞するまで~
oikon48
10
5.4k
「魔法少女まどか☆マギカ Magia Exedra」の多様なバトルの開発を柔軟かつ効率的に実現するためのPure C#とUnityの分離について
gree_tech
PRO
0
280
OSSで50の競合と戦うためにやったこと
yamadashy
3
960
All About Sansan – for New Global Engineers
sansan33
PRO
1
1.2k
Featured
See All Featured
Code Review Best Practice
trishagee
72
19k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
34
2.5k
Designing for Performance
lara
610
69k
Large-scale JavaScript Application Architecture
addyosmani
514
110k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
127
54k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
PRO
190
55k
Intergalactic Javascript Robots from Outer Space
tanoku
272
27k
Build The Right Thing And Hit Your Dates
maggiecrowley
37
2.9k
Balancing Empowerment & Direction
lara
5
700
Producing Creativity
orderedlist
PRO
347
40k
How to Think Like a Performance Engineer
csswizardry
27
2.1k
Making the Leap to Tech Lead
cromwellryan
135
9.6k
Transcript
© 2022, Amazon Web Services, Inc. or its affiliates. All
rights reserved. FinTech 2022/11/15
• ( ) • • 20 • Amazon Lightsail, Amazon
Route 53 @koemu
• − • FISC FISC •
Disclaimer • • • AWS • AWS
1. 2. AWS 3. 4. 5.
None
✖ ( ) ( FinTech) ( )
z ⾒
FinTech Startups ( ) ( ) FISC PCI DSS NIST
SP800 ISMS SOC2 FedRAMP ISO/IEC 27001 3850
FISC ( ) 2022 7 10 FISC --- (FISC )
1985 12 FISC (FISC )
AWS ( ) ( ) https://aws.amazon.com/jp/compliance/shared-responsibility-model/
AWS
FISC (FISC ) FISC AWS AWS https://aws.amazon.com/jp/compliance/fisc/
AWS AWS AWS https://d0.awsstatic.com/whitepapers/compliance/JP_Whitepapers/AWS_Risk_and_Complia nce_Overview_JP.pdf
AWS Artifact AWS Adobe Acrobat FISC SOC2 PCI ISO27001
None
AWS NO FISC / YES FISC AWS AWS Artifact AWS
• 1) • − AWS Fargate − Amazon Aurora MySQL
蓄 − Amazon Elastic Load Balancer AWS WAF 蓄 AWS Cloud VPC Amaazon CloudFront AWS WAF Elastic Load Balancing AWS Fargate Amazon Aurora
• − 1) • − AWS AWS AWS
FISC • − 1) • FISC 49 →
• − 1) • − ✖: ※ − : AWS
− : AWS ISO/IEC 27001 AWS AWS AWS • − ⾒ AWS ⾒
None
AWS Security Hub AWS Security Hub FinTech https://aws.amazon.com/jp/security-hub/
FISC Well-Architected Framework FSI Lens for FISC Baseline Environment on
AWS for FSI 3 https://github.com/aws-samples/baseline-environment-on-aws-for-financial-services-institute
Fintech Blueprint on AWS FinTech AWS CloudFormation https://aws.amazon.com/jp/quickstart/architecture/fintech-blueprint/
AWS PCI DSS PCI DSS AWS https://d1.awsstatic.com/whitepapers/ja_JP/compliance/pci-dss-compliance-on-aws.pdf
NIST SP800-53, 171 AWS AWS https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist-800-53_rev_5.html https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist_800-171.html
Q&A
( ) • − • FISC FISC •
Thank you © 2022, Amazon Web Services, Inc. or its
affiliates. All rights reserved.