Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
FinTech スタートアップのセキュリティチェックシートとの向き合い方 / AWS Fin...
Search
Yuichiro SAITO
PRO
November 10, 2022
Technology
0
470
FinTech スタートアップの セキュリティチェックシートとの向き合い方 / AWS FinTech Bootcamp! Compliance
AWS FinTech Bootcamp! 2022/11/15
Yuichiro SAITO
PRO
November 10, 2022
Tweet
Share
More Decks by Yuichiro SAITO
See All by Yuichiro SAITO
クラウドを積極活用したサービスの開発のために / AWS FinTech Bootcamp! Basic
koemu
PRO
0
210
ワークショップFinTech アーキテクチャ / AWS FinTech Bootcamp! Workshop
koemu
PRO
0
190
正しい理解で作る安心安全な FinTech の IT インフラ / tech play aws 2022 2
koemu
PRO
1
240
AWSの「今」 -PHPのコードを素早く動かすためのサービスのご紹介 / PHPCon2022 AWS Japan Session
koemu
PRO
2
1.9k
PdMとエンジニアのより良いコミュニケーションに向けて / Improve communication between Product Manager and Software Engineer
koemu
PRO
1
450
フェイズ別・スタートアップ企業への技術選定 シード編 #AWS #AWSStartup / Startup Tech 101 for Seed
koemu
PRO
0
470
AWSを使って送金機能を実装してみよう - 「sunabar-GMOあおぞらネット銀行API実験場-」コミュニティイベント第6弾
koemu
PRO
0
950
Hardening II SU Softening Day - Team カムイ Presentation
koemu
PRO
0
3.6k
Software Development at Mercari #ioi2018
koemu
PRO
0
1.1k
Other Decks in Technology
See All in Technology
o1のAPIで実験してみたが 制限きつすぎて辛かった話
pharma_x_tech
0
220
LLVM/ASMを使った有限体の高速実装
herumi
0
120
リアルお遍路+SORACOM IoT
ozk009
1
140
GC24 Recap: Interface Internals
task4233
0
220
OCI で始める!! Red Hat OpenShift / Get Started OpenShift on OCI
oracle4engineer
PRO
1
190
LINEヤフーのフロントエンド組織・体制の紹介
lycorp_recruit_jp
1
1.2k
効果的なオンコール対応と障害対応
ryuichi1208
6
3.1k
技術的負債解消の取り組みと専門チームのお話
bengo4com
0
340
実務における脅威モデリングを考えよう
nikinusu
0
680
Segment Anything Model 2
tenten0727
3
720
プロダクトエンジニアを支えるための開発生産性向上施策
tsukakei
0
150
『GRANBLUE FANTASY Relink』キャラクターの魅力を支えるリグ・シミュレーション制作事例
cygames
0
150
Featured
See All Featured
10 Git Anti Patterns You Should be Aware of
lemiorhan
653
58k
WebSockets: Embracing the real-time Web
robhawkes
59
7.3k
The Cult of Friendly URLs
andyhume
76
6k
Product Roadmaps are Hard
iamctodd
PRO
48
10k
Gamification - CAS2011
davidbonilla
79
5k
The Art of Programming - Codeland 2020
erikaheidi
48
13k
Producing Creativity
orderedlist
PRO
340
39k
The Invisible Side of Design
smashingmag
296
50k
Fireside Chat
paigeccino
31
2.9k
Testing 201, or: Great Expectations
jmmastey
36
7k
Automating Front-end Workflow
addyosmani
1365
200k
How GitHub Uses GitHub to Build GitHub
holman
472
290k
Transcript
© 2022, Amazon Web Services, Inc. or its affiliates. All
rights reserved. FinTech 2022/11/15
• ( ) • • 20 • Amazon Lightsail, Amazon
Route 53 @koemu
• − • FISC FISC •
Disclaimer • • • AWS • AWS
1. 2. AWS 3. 4. 5.
None
✖ ( ) ( FinTech) ( )
z ⾒
FinTech Startups ( ) ( ) FISC PCI DSS NIST
SP800 ISMS SOC2 FedRAMP ISO/IEC 27001 3850
FISC ( ) 2022 7 10 FISC --- (FISC )
1985 12 FISC (FISC )
AWS ( ) ( ) https://aws.amazon.com/jp/compliance/shared-responsibility-model/
AWS
FISC (FISC ) FISC AWS AWS https://aws.amazon.com/jp/compliance/fisc/
AWS AWS AWS https://d0.awsstatic.com/whitepapers/compliance/JP_Whitepapers/AWS_Risk_and_Complia nce_Overview_JP.pdf
AWS Artifact AWS Adobe Acrobat FISC SOC2 PCI ISO27001
None
AWS NO FISC / YES FISC AWS AWS Artifact AWS
• 1) • − AWS Fargate − Amazon Aurora MySQL
蓄 − Amazon Elastic Load Balancer AWS WAF 蓄 AWS Cloud VPC Amaazon CloudFront AWS WAF Elastic Load Balancing AWS Fargate Amazon Aurora
• − 1) • − AWS AWS AWS
FISC • − 1) • FISC 49 →
• − 1) • − ✖: ※ − : AWS
− : AWS ISO/IEC 27001 AWS AWS AWS • − ⾒ AWS ⾒
None
AWS Security Hub AWS Security Hub FinTech https://aws.amazon.com/jp/security-hub/
FISC Well-Architected Framework FSI Lens for FISC Baseline Environment on
AWS for FSI 3 https://github.com/aws-samples/baseline-environment-on-aws-for-financial-services-institute
Fintech Blueprint on AWS FinTech AWS CloudFormation https://aws.amazon.com/jp/quickstart/architecture/fintech-blueprint/
AWS PCI DSS PCI DSS AWS https://d1.awsstatic.com/whitepapers/ja_JP/compliance/pci-dss-compliance-on-aws.pdf
NIST SP800-53, 171 AWS AWS https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist-800-53_rev_5.html https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist_800-171.html
Q&A
( ) • − • FISC FISC •
Thank you © 2022, Amazon Web Services, Inc. or its
affiliates. All rights reserved.