The AWS Audit Manager has introduced a new common control library to simplify automating risk and compliance assessments against business controls. This allows GRC teams to efficiently map controls to Audit Manager for evidence collection. The library provides predefined AWS data sources and eliminates the need to identify which AWS resources to evaluate for controls. Managed by certified AWS auditors, it determines appropriate data sources for evidence collection and offers more evidence mappings for controls, including 140 newly supported API calls. Clients can customize evidence assignments to fit their goals and reduce the need to individually implement compliance standards and review data multiple times across different compliance regimes. The library identifies common requirements across controls to help clients understand their audit readiness across multiple frameworks simultaneously.
As AWS Audit Manager updates or adds data sources or additional compliance frameworks to common controls, clients automatically inherit these improvements, eliminating the need for constant updates. This provides the benefit of additional compliance frameworks being added to the Audit Manager library.
Article Source
https://aws.amazon.com/about-aws/whats-new/2024/06/announcing-common-control-library-aws-audit-manager
