AWS Public Sector Blog
Tag: cybersecurity
Continuous monitoring and governance: AWS best practices for keeping your data secure during the holidays
As we look ahead to 2025, it’s crucial to maintain vigilance, especially during the holiday season, when cybersecurity risks tend to escalate. Many organizations use Amazon Web Services (AWS) to enhance their security posture and improve resilience. In this post, we discuss the AWS best practices for securing your data during the holiday season.
AWS Verified Access in a TIC 3.0 architecture
Federal agencies can use Amazon Web Services (AWS) to meet Trusted Internet Connections (TIC) 3.0 requirements. To facilitate this, AWS has published detailed architectural overlays that demonstrate how to effectively implement TIC 3.0 guidelines within AWS deployments. AWS Verified Access (AVA) is a cloud-based service that enables secure access to applications without requiring the use of a virtual private network (VPN). It evaluates each application request and gives users access to each application only when they meet the specified security requirements. AVA supports TIC 3.0 requirements in the areas of configuration management, centralized log management, strong authentication features, resilience, and policy enforcement. Read this post to learn more.
The key components of CISA’s Malcolm on Amazon EKS
Malcolm is a powerful, open source network traffic analysis tool suite created by the Cybersecurity and Infrastructure Security Agency (CISA) to aid public and private sector customers in improving their network security monitoring and incident response. Malcolm is most commonly used for incident response, network monitoring, threat hunting, training, and research, but can be adapted for other use cases. In this post, we introduce you to the key components of Malcolm on Amazon Elastic Kubernetes Service (Amazon EKS).
Canadian Centre for Cybersecurity’s Assemblyline brings powerful malware analysis to AWS Marketplace
The Canadian Centre for Cyber Security (Cyber Centre) was established in 2018 under Canada’s National Cyber Security Strategy. The Cyber Centre is the nation’s centralized source for expert cybersecurity advice, services, and support. Its crucial mission involves protecting Canada’s critical cyber assets, including federal government systems. One of the Cyber Centre’s notable innovations is Assemblyline, an open source malware detection and analysis tool available to the cybersecurity community and now others on the Amazon Web Services (AWS) Marketplace.
AWS Canada launches $5 million Provincial and Municipal Cyber Grant Program
On September 11, 2024, Amazon Web Services (AWS) announced the launch of the Provincial and Municipal Cyber Grant Program across Canada at the AWS Summit in Toronto. To help provincial and municipal governments implement cloud-based cybersecurity solutions, AWS is investing $5 million CAD in AWS credits to new and existing AWS customers.
Generative AI as a force for good in facilitating cyber-resiliency in public sector organizations
The Digital Transformation Hub (DxHub) at California Polytechnic State University (Cal Poly) in San Luis Obispo – powered by Amazon Web Services (AWS) and part of the AWS Cloud Innovation Centers (CIC) program – collaborated with the City of San Diego and the San Diego Cyber Center of Excellence (CCOE) to create ‘My eCISO,’ a generative artificial intelligence (AI)-based application that propels public and private organizations on a path to cyber resiliency. This post explores the technology behind My eCISO and its implications for organizations looking to protect against attacks.
How to transfer data to the CISA Cloud Log Aggregation Warehouse (CLAW) using Amazon S3
In this post, we show you how you can push or pull your security telemetry data to the National Cybersecurity Protection System (NCPS) Cloud Log Aggregation Warehouse (CLAW) using Amazon Web Services (AWS) Simple Storage Service (Amazon S3) or third-party solutions.
Five need-to-know facts about using the AWS Cloud for K12 cyber-resiliency
K12 leaders need tangible solutions and tactics for improving their school’s or district’s cyber-resilience in the coming school year, and Amazon Web Services (AWS) is committed to supporting schools and districts as they enhance the cybersecurity of their networks. Recently, AWS joined the White House, the Department of Homeland Security, and the Department of Education—among other leaders in the government and education community—to commit to improving the cybersecurity resilience of K12 education. As part of this commitment, AWS created the K12 Cyber Grant Program, offering up to $20 million in AWS Promotional Credits to both new and existing K12 customers.
Automate cybersecurity analysis with MBSE workflows enabled by AWS
Digital engineering fundamentally relies on integrating data across model structures by using a digital thread – an underlying framework for integrating data from across traditionally siloed functions that create a consolidated view of the system’s data throughout its lifecycle. The cloud is integral to digital engineering by supporting collaboration across geographically dispersed organizations, automating workflows for data connectivity and trade space analysis in a reliable, scalable, and cost-effective manner. This post describes how Amazon Web Services (AWS) Partner General Dynamics Information Technology (GDIT) has used digital engineering in combination with secure and scalable AWS services, to deliver secure IT systems to a large defense program.
AWS Canada launches $5 million K12 Cyber Grant Program
Today, Amazon Web Services (AWS) announced the launch of the K12 Cyber Grant Program across Canada. To help public schools across Canada implement cloud-based cybersecurity solutions, AWS is investing $5 million CAD in AWS promotional credits to new and existing AWS customers. This program will allow school boards to improve their security posture and advance their ransomware protection. AWS has been architected to be the most flexible and secure cloud computing environment available today and our cloud infrastructure is secure by design and secure by default.