How should the company obtain these reports?
Contact AWS Support.
Download reports from AWS Artifact.
Download reports from AWS Security Hub.
Contact an AWS technical account manager (TAM).
Explanations:
Contacting AWS Support may provide guidance but will not yield direct access to PCI reports. AWS Support typically assists with issues and questions rather than providing compliance reports directly.
AWS Artifact is the correct platform for downloading compliance reports, including Payment Card Industry (PCI) reports, which validate the effectiveness of AWS security controls. Users can access a variety of compliance-related documents directly through this service.
AWS Security Hub is designed for security monitoring and compliance checks but does not provide direct access to compliance reports such as PCI. It aggregates security findings but does not serve as a repository for regulatory compliance documentation.
While an AWS Technical Account Manager (TAM) can provide personalized guidance and support, they do not typically provide direct access to compliance reports. The TAM may facilitate communication or help with compliance-related queries, but reports must be accessed via AWS Artifact.