How Do You Prepare ECS Fargate for a SOC 2 Audit?

To prepare ECS Fargate for a SOC 2 audit, you must address specific ECS controls flagged by Security Hub, such as non-privileged users, read-only root FS, and logging. This requires continuous evidence of these controls across every environment, every day, over a 6-month observation window. Don't over-build controls and focus on the shared responsibility model. You can download AWS's SOC 2 report to inherit their infrastructure controls and focus on your half, which includes task definitions, IAM scoping, and logging.