Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
FinTech スタートアップの セキュリティチェックシートとの向き合い方 / AWS Fin...
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Yuichiro SAITO
November 10, 2022
Technology
720
0
Share
FinTech スタートアップの セキュリティチェックシートとの向き合い方 / AWS FinTech Bootcamp! Compliance
AWS FinTech Bootcamp! 2022/11/15
Yuichiro SAITO
November 10, 2022
More Decks by Yuichiro SAITO
See All by Yuichiro SAITO
クラウドを積極活用した サービスの開発のために / AWS FinTech Bootcamp! Basic
koemu
0
340
ワークショップ FinTech アーキテクチャ / AWS FinTech Bootcamp! Workshop
koemu
0
290
正しい理解で作る 安心安全な FinTech の IT インフラ / tech play aws 2022 2
koemu
1
370
AWSの「今」 - PHPのコードを素早く動かすための サービスのご紹介 / PHPCon2022 AWS Japan Session
koemu
2
2.2k
PdMとエンジニアの より良いコミュニケーションに向けて / Improve communication between Product Manager and Software Engineer
koemu
1
680
フェイズ別・スタートアップ企業への技術選定 シード編 #AWS #AWSStartup / Startup Tech 101 for Seed
koemu
0
530
AWSを使って送金機能を実装してみよう - 「sunabar-GMOあおぞらネット銀行API実験場-」コミュニティイベント第6弾
koemu
0
1.1k
Hardening II SU Softening Day - Team カムイ Presentation
koemu
0
4k
Software Development at Mercari #ioi2018
koemu
0
1.3k
Other Decks in Technology
See All in Technology
ワールドカフェI /チューターを改良する / World Café I and Improving the Tutors
ks91
PRO
0
320
目的ファーストのハーネス設計 ~ハーネスの変更容易性を高めるための優先順位~
gotalab555
8
2.2k
こんなアーキテクチャ図はいやだ / Anti-pattern in AWS Architecture Diagrams
naospon
1
450
AI時代における技術的負債への取り組み
codenote
1
1.5k
ハーネスエンジニアリングの概要と設計思想
sergicalsix
9
4.9k
マルチプロダクトの信頼性を効率良く保っていくために
kworkdev
PRO
0
160
Revisiting [CLS] and Patch Token Interaction in Vision Transformers
yu4u
0
360
EBS暗号化に失敗してEC2が動かなくなった話
hamaguchimmm
2
200
レビューしきれない?それは「全て人力でのレビュー」だからではないでしょうか
amixedcolor
0
320
LLM時代の検索アーキテクチャと技術的意思決定
shibuiwilliam
3
1.2k
Introduction to Sansan, inc / Sansan Global Development Center, Inc.
sansan33
PRO
0
3.1k
Digitization部 紹介資料
sansan33
PRO
1
7.3k
Featured
See All Featured
The Invisible Side of Design
smashingmag
302
52k
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
64
55k
Building a Modern Day E-commerce SEO Strategy
aleyda
45
9k
Deep Space Network (abreviated)
tonyrice
0
120
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
marketingsoph
0
130
Java REST API Framework Comparison - PWX 2021
mraible
34
9.3k
Designing for Timeless Needs
cassininazir
0
190
The Straight Up "How To Draw Better" Workshop
denniskardys
239
140k
We Analyzed 250 Million AI Search Results: Here's What I Found
joshbly
1
1.2k
Testing 201, or: Great Expectations
jmmastey
46
8.1k
How to Align SEO within the Product Triangle To Get Buy-In & Support - #RIMC
aleyda
1
1.5k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
61k
Transcript
© 2022, Amazon Web Services, Inc. or its affiliates. All
rights reserved. FinTech 2022/11/15
• ( ) • • 20 • Amazon Lightsail, Amazon
Route 53 @koemu
• − • FISC FISC •
Disclaimer • • • AWS • AWS
1. 2. AWS 3. 4. 5.
None
✖ ( ) ( FinTech) ( )
z ⾒
FinTech Startups ( ) ( ) FISC PCI DSS NIST
SP800 ISMS SOC2 FedRAMP ISO/IEC 27001 3850
FISC ( ) 2022 7 10 FISC --- (FISC )
1985 12 FISC (FISC )
AWS ( ) ( ) https://aws.amazon.com/jp/compliance/shared-responsibility-model/
AWS
FISC (FISC ) FISC AWS AWS https://aws.amazon.com/jp/compliance/fisc/
AWS AWS AWS https://d0.awsstatic.com/whitepapers/compliance/JP_Whitepapers/AWS_Risk_and_Complia nce_Overview_JP.pdf
AWS Artifact AWS Adobe Acrobat FISC SOC2 PCI ISO27001
None
AWS NO FISC / YES FISC AWS AWS Artifact AWS
• 1) • − AWS Fargate − Amazon Aurora MySQL
蓄 − Amazon Elastic Load Balancer AWS WAF 蓄 AWS Cloud VPC Amaazon CloudFront AWS WAF Elastic Load Balancing AWS Fargate Amazon Aurora
• − 1) • − AWS AWS AWS
FISC • − 1) • FISC 49 →
• − 1) • − ✖: ※ − : AWS
− : AWS ISO/IEC 27001 AWS AWS AWS • − ⾒ AWS ⾒
None
AWS Security Hub AWS Security Hub FinTech https://aws.amazon.com/jp/security-hub/
FISC Well-Architected Framework FSI Lens for FISC Baseline Environment on
AWS for FSI 3 https://github.com/aws-samples/baseline-environment-on-aws-for-financial-services-institute
Fintech Blueprint on AWS FinTech AWS CloudFormation https://aws.amazon.com/jp/quickstart/architecture/fintech-blueprint/
AWS PCI DSS PCI DSS AWS https://d1.awsstatic.com/whitepapers/ja_JP/compliance/pci-dss-compliance-on-aws.pdf
NIST SP800-53, 171 AWS AWS https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist-800-53_rev_5.html https://docs.aws.amazon.com/ja_jp/config/latest/developerguide/operational-best- practices-for-nist_800-171.html
Q&A
( ) • − • FISC FISC •
Thank you © 2022, Amazon Web Services, Inc. or its
affiliates. All rights reserved.
koemu
ks91
gotalab555
naospon
codenote
sergicalsix
kworkdev
yu4u
hamaguchimmm
amixedcolor
shibuiwilliam
sansan33
smashingmag
nwiizo
aleyda
tonyrice
marketingsoph
mraible
cassininazir
denniskardys
joshbly
jmmastey
lemiorhan
