Posted On: Jan 17, 2017

This Quick Start deploys a standardized AWS environment for workloads classified as United Kingdom (UK) OFFICIAL. The Quick Start supports guidance and controls that help public sector organizations manage risks and ensure security when handling information assets classified as UK-OFFICIAL.

The Quick Start builds an AWS environment that aligns with the National Cyber Security Centre (NCSC) Cloud Security Principles and the Center for Internet Security (CIS) Critical Security Controls, which are primary considerations for UK-OFFICIAL compliance.

AWS CloudFormation templates automate the deployment and can be customized to build a repeatable, auditable reference architecture that meets your specific needs. The Quick Start includes a deployment guide that describes the architecture in detail and provides step-by-step instructions for deploying, configuring, and validating the AWS environment.

The Quick Start also provides a security controls matrix that maps the architecture decisions, components, and configuration in the Quick Start to security requirements within the NCSC publication; indicates which AWS CloudFormation templates and stacks affect the controls implementation; and specifies the associated AWS resources within the templates and stacks.

To get started, use the following resources:
- View architecture and details
- View deployment guide – HTML | PDF
- View security controls matrix (Microsoft Excel format)
- Browse and launch other AWS Quick Start reference deployments

If you need assistance with an enterprise implementation of the capabilities introduced through this Quick Start, AWS Professional Services can guide and assist with the training, customization, and implementation of deployment and maintenance processes.  Please contact your AWS Account Manager for further information, or send an inquiry to compliance-accelerator@amazon.com.

About Quick Starts

Quick Starts are automated reference deployments for key workloads on the AWS Cloud. Each Quick Start launches, configures, and runs the AWS compute, network, storage, and other services required to deploy a specific workload on AWS, using AWS best practices for security and availability.