Updated whitepaper: Architecting for PCI DSS Segmentation and Scoping on AWS

Security Blog

This article summarizes an updated whitepaper from AWS on architecting for PCI DSS segmentation and scoping on AWS. The key points are:

Specifically, the article covers:

The whitepaper provides guidance on defining the scope of PCI DSS 4.0 workloads on AWS and using AWS services for segmentation.
New enhancements include reference architectures for AWS account structure, network design patterns, firewall rule examples, and enhanced segmentation guidance.
It targets engineers, QSAs, and internal assessors to understand AWS segmentation controls for PCI DSS compliance.
Software-defined networking on AWS enables additional segmentation controls beyond network segmentation for scoping cardholder data environments.
AWS security and governance tools enable automated compliance and security tasks to focus on scaling and innovation.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Apr 1
2026

Building PCI DSS-Compliant Architectures on Amazon EKS

Dec 11
2024

AWS Security Hub now supports PCI DSS v4.0.1 standard

Jan 19
2024

Latest PCI DSS v4.0 compliance package available in AWS Artifact

Mar 6
2025

How Thales Enables PCI-DSS Compliance with a Tokenization Solution on AWS

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Updated whitepaper: Architecting for PCI DSS Segmentation and Scoping on AWS

Related articles