Data Center Controls

AWS data centers meet or exceed ISO and NIST standards for security, redundancy, and disaster recovery. As an AWS customer, we benefit from this massive investment and are able to pass the benefit on to clients for a fraction of the cost. AWS data center controls are described here at a summary level. More detailed information is available here.

Perimeter

• Physical access is restricted to people who need to be at a location for a justified business reason.
• Entry gates are staffed with security officers and monitored with security cameras.
• AWS employees who routinely need access to a data center are given permissions to relevant areas of the facility based on job function.
• Sites are continuously monitored for unauthorized entry using video surveillance, intrusion detection, access log systems, and door alarms.
• AWS Security Operations Centers are located around the world and providing global, 24/7 support to the on-site data center security teams.

Infrastructure

• With a layer-by-layer access review, the right to enter every layer is not granted by default. Access to any particular layer is only granted if there is a specific need to access that specific layer.
• AWS teams routinely run diagnostics on machines, networks, and backup equipment to ensure they’re in working order now and in an emergency.
• Water, power, telecommunications, and internet connectivity are designed with redundancy to maintain continuous operations in an emergency.

Environment

• All data centers use water-detection devices, automatic pumps, and automatic fire detection and suppression equipment.
• Unlike virtually every other technology infrastructure provider, each AWS Region has multiple Availability Zones. Each Availability Zone consists of one or more data centers, are physically separated from one another, and have redundant power and networking. Availability Zones are connected to each other with fast, private fiber-optic networking.
• The AWS Business Continuity Plan is an operations process guide outlining how to avoid and lessen disruptions due to natural disasters with detailed steps to take before, during, and after an event. To mitigate and prepare for the unexpected, AWS tests the Business Continuity Plan regularly with drills that simulate different scenarios.
• In addition to addressing environmental risks, AWS has a long-term commitment to using 100% renewable energy. When companies move to the AWS Cloud from on-premises infrastructure, they typically reduce carbon emissions by 88% because of environmental economies of scale. Learn more about AWS and sustainability.