aPriori Cloud Security Overview and Standards

This white paper presents an overview of the security measures and standards implemented in the aPriori cloud solution. It details the architecture of the aPriori cloud, which is built on AWS Infrastructure as a Service (IaaS), highlighting the security controls and frameworks that ensure customer data confidentiality, integrity, and availability. The document outlines the shared responsibility model between aPriori and AWS, emphasizing the roles each party plays in maintaining cloud security. It describes the Governance, Risk, and Compliance (GRC) Framework that guides aPriori's security policies, which are based on industry standards such as NIST, CIS, and ISO 27001. The paper also discusses the risk management program, which includes regular assessments and testing to identify and mitigate risks. Furthermore, it details the roles and responsibilities of various teams within aPriori that contribute to the security of the cloud solution, ensuring that customer needs and compliance obligations are met.