COMPLIANCE IN THE CLOUD Continuous Management & Reporting While cloud service providers maintain responsibility for compliance of their cloud offering, enterprises must measure and demonstrate compliance in their systems. Many organizations struggle to do so in this new cloud paradigm. Organizations need to show compliance with regulatory requirements around access control, encryptions, data residency, and other controls in their IT infrastructure. To maintain a state of compliance, they must first have insight into their cloud to understand where there are vulnerabilities and risks. As a dynamic system that is optimized to connect data, the cloud constantly transacts and connects, and requires a compliance solution that provides continuous visibility. Supported Compliance Benchmarks CIS AWS Foundations HIPAA ISO 27001 NIST 800-53 NIST 800-171 PCI-DSS 3.2 SOC2 Custom Compliance Rather than rely on intermittent audits that become outdated as soon as they are finished, a continuous approach means you can see the status of your security and compliance at all times, and specifically within the different layers and regions of your cloud environment. The Evident Security Platform (ESP®) delivers complete, real-time compliance assessment of your entire cloud infrastructure with simple, one-button compliance reports. Organizations who leverage ESP for security and compliance benefit from efficiencies and timeliness, enabling them to focus on other high-value projects. • HIPAA, ISO 27001, NIST 800-53/FedRAMP, NIST 800-171, PCI, SOC 2 & Custom Compliance • Complete, real-time visibility across your entire cloud — all reigions, accounts and services • Fully customizable to meet your requirements • Automated enforcement for faster resolution • Support for AWS Standard, GovCloud and C2S regions, Microsoft Azure