We’re excited to announce that Amazon Internet Companies (AWS) has accomplished the 2023 South Korea Cloud Service Suppliers (CSP) Security Evaluation Program, often known as the Regulation on Supervision on Digital Monetary Transactions (RSEFT) Audit Program. The monetary sector in South Korea is required to abide by quite a lot of cybersecurity requirements and laws. Key regulatory necessities embody RSEFT and the Pointers on the Use of Cloud Computing Companies within the Monetary Trade (FSIGUC). Previous to 2019, the RSEFT steerage didn’t allow using cloud computing. The steerage was amended on January 1, 2019, to permit monetary establishments to make use of the general public cloud to retailer and course of information, topic to compliance with safety measures relevant to monetary firms.
AWS is dedicated to serving to our clients adhere to relevant laws and tips, and we assist be certain that our monetary clients have a hassle-free expertise utilizing the cloud. Since 2019, our RSEFT compliance program has aimed to offer a scalable method to help South Korean monetary companies clients’ adherence to RSEFT and FSIGUC. Monetary companies clients can yearly both carry out a person audit by utilizing publicly obtainable AWS assets and visiting on-site, or request the South Korea Monetary Safety Institute (FSI) to conduct the first audit on their behalf and use the FSI-produced audit stories. In 2023, we labored once more with FSI and accomplished the annual RSEFT major audit with the participation of 59 clients.
The audit scope of the 2023 evaluation coated information heart services in 4 Availability Zones (AZ) of the AWS Asia Pacific (Seoul) Area and the companies which can be obtainable in that Area. The audit program assessed completely different safety domains together with safety insurance policies, personnel safety, danger administration, enterprise continuity, incident administration, entry management, encryption, and bodily safety.
Completion of this audit program helps our clients use the outcomes and audit report for his or her annual submission to the South Korea Monetary Supervisory Service (FSS) for his or her adoption and continued use of our cloud companies and infrastructure. To be taught extra in regards to the RSEFT program, see the AWS South Korea Compliance Web page. If in case you have questions, contact your AWS account supervisor.
If in case you have suggestions about this publish, submit feedback in th Feedback part beneath.