Abstract The CSA Consensus Assessments Initiative Questionnaire provides a set of questions the CSA anticipates a cloud consumer and/or a cloud auditor would ask of a cloud provider. It provides a series of security, control, and process questions which can then be used for a wide range of uses, including cloud provider selection and security evaluation. AWS has completed this questionnaire with the answers below. The questionnaire has been completed using the current CSA CAIQ standard, v4.0.2 (06.07.2021 Update). Introduction The Cloud Security Alliance (CSA) is a “not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing.” For more information, see https://cloudsecurityalliance.org/about/. A wide range of industry security practitioners, corporations, and associations participate in this organization to achieve its mission.
