AWS Public Sector Blog
Category: Compliance
How AWS Wickr can enable secure communications for the Australian Government and its allies
The use of consumer-grade messaging applications poses significant security and sovereignty risks for Australian Government agencies, making it difficult to meet governmental information management obligations. Official guidance from the National Archives of Australia (NAA) unambiguously states that “instant messaging posts … created or received as part of Australian Government business are Commonwealth records.” Amazon Web Services (AWS) Wickr is an end-to-end encrypted messaging and collaboration service that provides the advanced security, administrative controls, and data retention capabilities government agencies need to protect sensitive information and meet legislative requirements. Read this post to learn more.
How AWS helps agencies meet OMB AI governance requirements
The Amazon Web Services (AWS) commitment to safe, transparent, and responsible artificial intelligence (AI)—including generative AI—is reflected in our endorsement of the White House Voluntary AI Commitments, our participation in the UK AI Safety Summit, and our dedication to providing customers with features that address specific challenges in this space. In this post, we explore how AWS can help agencies address the governance requirements outlined in the Office of Management and Budget (OMB) memo M-2410 as public sector entities look to build internal capacity for AI.
Five need-to-know facts about using the AWS Cloud for K12 cyber-resiliency
K12 leaders need tangible solutions and tactics for improving their school’s or district’s cyber-resilience in the coming school year, and Amazon Web Services (AWS) is committed to supporting schools and districts as they enhance the cybersecurity of their networks. Recently, AWS joined the White House, the Department of Homeland Security, and the Department of Education—among other leaders in the government and education community—to commit to improving the cybersecurity resilience of K12 education. As part of this commitment, AWS created the K12 Cyber Grant Program, offering up to $20 million in AWS Promotional Credits to both new and existing K12 customers.
Building compliant healthcare solutions using Landing Zone Accelerator
In this post, we explore the complexities of data privacy and controls on Amazon Web Services (AWS), examine how creating a landing zone within which to contain such data is important, and highlight the differences between creating a landing zone from scratch compared with using the AWS Landing Zone Accelerator (LZA) for Healthcare. To aid explanation, we use a simple healthcare workload as an example. We also explain how LZA for Healthcare codifies HIPAA controls and AWS Security Best Practices to accelerate the creation of an environment to run protective health information workloads in AWS.
The benefits of running controlled substance databases with AWS
Healthcare authorities and providers use state-run controlled substance databases (CSDs) to track prescriptions and identify patients for substance abuse. CSDs help evaluate treatment options, screen patients who may be at risk for drug abuse problems, and make informed decisions about prescribing medication. This post explains how healthcare authorities can leverage CSD data to enhance their decision-making processes within business operations by using Amazon Web Services (AWS).
Idaho Controller modernizes back-office operations using AWS
Idaho deputy controller Josh Whitworth, who leads the state’s enterprise resource planning (ERP) modernization efforts, believes in looking beyond what legacy applications were designed to do decades ago to see the solutions of tomorrow. That view has helped Whitworth and his team transform Idaho’s back-office infrastructure and related processes. Read this blog post to learn how Amazon Web Services (AWS) helped Idaho modernize its ERP.
How credit unions can evaluate their FFIEC, NCUA cyber compliance using AWS
Credit unions face unique security, regulatory, and compliance obligations. These requirements mean that a sound cybersecurity posture is essential for credit unions across both cloud workloads and on-premises technology. Read this blog post to learn how Amazon Web Services (AWS) can help credit unions prepare for audits, assess security posture, and produce documentation for state or federal regulators.
Securing and automating compliance in the public sector with AWS
Compliance is essential, but ensuring compliance in the cloud with various regulations and standards can be challenging, especially for public sector organizations. The requirements are highly dynamic, constantly evolving, and they vary across countries. Read this blog post to learn about the Amazon Web Services (AWS) resources that can help customers meet compliance requirements, reduce their time and effort, and focus on core business objectives.
StateRAMP on AWS
What do AWS public sector customers need to know about the State Risk and Authorization Management Program (StateRAMP) and how can you use AWS to help meeting StateRAMP requirements? In this blog post, learn a quick recap on what StateRAMP is and how it differs from the similar Federal Risk and Authorization Management Program (FedRAMP).
Support FedRAMP and CMMC compliance with the Landing Zone Accelerator on AWS
Some US federal agencies and those who collaborate with them must support an automated, secure, and scalable multi-account cloud environment that meets Federal Risk and Authorization Management Program (FedRAMP) and Cybersecurity Maturity Model Certification (CMMC) standards. To support these needs, AWS customers and partners can deploy the Landing Zone Accelerator (LZA) on AWS. Recently, AWS worked with Coalfire, a FedRAMP-approved third-party assessment organization (3PAO) and AWS Partner, to assess and verify the LZA solution.