Compliance validation for AWS Lambda
Third-party auditors assess the security and compliance of AWS Lambda as part of multiple AWS compliance programs. These include SOC, PCI, FedRAMP, HIPAA, and others.
For a list of AWS services in scope of specific compliance programs, see AWS services in scope by compliance program
You can download third-party audit reports using AWS Artifact. For more information, see Downloading reports in AWS artifact.
Your compliance responsibility when using Lambda is determined by the sensitivity of your data, your company's compliance objectives, and applicable laws and regulations. You can implement governance controls to ensure that your company's Lambda functions meet your compliance requirements. For more information, see Create a governance strategy for Lambda functions and layers.