Compliance

COMPLIANCE, ALIGNMENT AND APPROVALS

The mSIS Cloud is an AWS solution. AWS is committed to supporting Public Sector, Blue Light, Justice, and Public Safety organizations.

 

NCSC UK and the Cloud Security Principles

AWS has published a whitepaper to assist organisations using Amazon Web Services (AWS) in the United Kingdom (UK) for OFFICIAL classified workloads in alignment with the National Cyber Security Centre’s (NCSC) Cloud Security Principles published under the Cloud Security Guidance and in compliance with the NCSC Standards & Definitions.

Cyber Essentials
A simple but effective, Government backed scheme to help organisations, whatever their size, protect against a whole range of the most common cyber attacks.
AWS certificate number: CREST 5928228372283900
Qwarie certificate number:  IASME-A-011486
Verify with search

 

DATA CENTRE SECURITY

Home Office Approval AWS London region has been approved by the Home Office Digital, Data and Technology, and NPIRMT the National Policing Information Risk Management Team for use by UK Law Enforcement Agencies. 
The mSIS Cloud is deployed on AWS region EU London.

EU London AWS data centres are PASF (Police Assured Security Facility) certified.

British Standard 7858:2012 AWS employees with physical access to the red zone data centres as well as critical permission groups, and those who are directed by the Buyer to access Buyer Data such as Technical Account Managers (“TAMS”) are cleared to BS7858:2012

Data Centre Security Overview

 

INFORMATION & DATA SECURITY

Information gathered with mSIS while deployed in the mSIS Cloud is MoPI compliant

AWS GDPR Center

EU-US PRIVACY SHIELD Compliance & Certification

 

AWS COMPLIANCE PROGRAMS

CSA Cloud Security Alliance Controls

ISO 9001 Global Quality Standard

ISO 27001 Security Management Controls

ISO 27017 Cloud Specific Controls

ISO 27018 Personal Data Protection
Extensive Global and multiple National programme details

 

TECHNICAL COMPLIANCE

IT Health Check ITHC or Pen testing is aligned with CREST. AWS publishes it's Penetration Testing Policy

AWS Workspaces Connection HealthCheck in realtime