What it is

AWS Key Management Service

AWS Key Management Service (KMS) is Amazon's service for creating, controlling, and auditing cryptographic keys used to protect data in AWS services such as S3, RDS, EBS, Lambda, and others. Integrated with CloudTrail, it provides a complete audit trail of every key use, which is required for compliance with LGPD and PCI DSS.

View pillar Data Shield
Centralized key management

Creation, automatic rotation, and revocation of symmetric and asymmetric keys with granular IAM policy-based access control.

Native AWS service encryption

Native integration with S3, RDS, EBS, DynamoDB, SQS, SNS, and over 100 AWS services to encrypt data at rest with a single click.

Customer Managed Keys (CMK)

Customer-managed keys for full control over the cryptographic lifecycle, including the option for a dedicated HSM (CloudHSM).

Audit via CloudTrail

Every cryptographic operation is logged in CloudTrail, showing who used which key, when, and in which service, as compliance evidence.

Evernow + AWS Key Management Service

From licensing to operations, all in one partner

As a certified partner, Evernow goes beyond reselling the license. We conduct the proof of concept, implement, train your team, and operate the platform with defined SLAs.

Architecture Assessment

Analysis of the current encryption state in the AWS environment and key architecture recommendation aligned with LGPD and PCI DSS.

Implementation & Configuration

Key hierarchy creation, access policy configuration, automatic rotation activation, and encryption of existing services.

DevOps & Security Training

Training for cloud and development teams to correctly implement encryption in new services and applications.

Compliance Management

Periodic review of key policies, compliance verification, and evidence generation for audits.

Technical Support

Support for multi-region KMS architecture, on-premise integration via External Key Store, and access failure resolution.

Clients who trust Evernow
Logo de cliente Evernow
Logo de cliente Evernow
Logo de cliente Evernow
Logo de cliente Evernow
Logo de cliente Evernow
Logo de cliente Evernow
Related services

How Evernow delivers with AWS Key Management Service

Encryption / KMS / HSM

Data protected at rest, in transit, and in use, even outside your perimeter.

View details
Data Discovery

Know where your data is before someone else finds it first.

View details
PCI DSS

Structured PCI DSS compliance with no surprises in the SAQ or with the QSA.

View details
FAQ

Frequently asked questions about AWS Key Management Service

KMS is the standard managed service, shared but with customer-isolated keys. CloudHSM is a dedicated physical HSM for clients requiring exclusive control of cryptographic hardware (FIPS 140-2 Level 3 regulations).

Yes. KMS supports encryption and tokenization that, when implemented correctly, meet LGPD pseudonymization requirements and PCI DSS data protection.

Yes. We configure KMS policies for secure key sharing between AWS accounts in an organization, with the correct access controls and without undue exposure.

Want to implement AWS Key Management Service?

Evernow conducts the POC, implements, and operates the platform. Talk to a certified specialist.

Request free POC
Talk to a specialist
Evernow

Specialized cybersecurity consulting: AppSec, data protection, compliance and security operations.

Solutions

Industries

Resources

Company

Contact

Copyright Evernow © 2026. All rights reserved.