AWS Public Sector Blog

Category: AWS CloudTrail

Accelerate IRAP readiness with AWS and Wiz

Accelerate IRAP readiness with AWS and Wiz

As organisations modernise to meet the evolving expectations of the Australian Government, delivering secure, cloud-based services has become a commercial and operational necessity. This transformation brings a critical challenge: maintaining a hardened security posture while aligning to the Information Security Registered Assessors Program (IRAP) assessment requirements and priorities.

MARS-E to ARC-AMPE: Guide for state Medicaid agencies on AWS

MARS-E to ARC-AMPE: Guide for state Medicaid agencies on AWS

This post is for two audiences. The first is agencies already running MARS-E-compliant workloads on AWS that are looking to map their existing posture onto the new framework. The second is agencies planning a migration from on-premises infrastructure where ARC-AMPE will be in scope from the first day.

An incident response playbook for satellite operations on AWS (Part-1): Detection and forensic readiness

An incident response playbook for satellite operations on AWS (Part-1): Detection and forensic readiness

In this post, the first in a two-part series, we focus on the detection and forensic readiness side of satellite IR. This post walks through instrumenting your ground segment with Amazon Web Services (AWS) security services and AWS Ground Station so that threats surface before they cause damage, and forensic data is already flowing when an incident occurs.

An incident response playbook for satellite operations on AWS (Part-2): Automated response and recovery

An incident response playbook for satellite operations on AWS (Part-2): Automated response and recovery

This blog covers what to do when those detections fire. Satellite incident response (IR) must account for constraints that ground-based systems never face: containment actions that wait for the next orbital pass, decisions that trade mission continuity against security, and recovery procedures where the compromised endpoint cannot be physically accessed. It walks through containment, eradication, recovery, automated runbooks, and tabletop exercises designed for satellite operations teams.

Prepare for your GovRAMP Progressing Snapshot with AWS

Prepare for your GovRAMP Progressing Snapshot with AWS

In this post, we explain what the Progressing Snapshot program is, what the program is for, who it is for, and how Amazon Web Services (AWS) helps you lay the foundation to address many of the 40 snapshot controls.

Evaluating ITAR workloads in US commercial AWS Regions

Evaluating ITAR workloads in US commercial AWS Regions

This post distills how one Amazon Web Services (AWS) customer in the defense and aerospace industry interpreted the U.S. International Traffic in Arms Regulations (ITAR) and concluded that U.S. commercial AWS Regions could support their export-controlled workloads, including AI workloads, when configured appropriately.

Why the location of your AI agent is a security decision

Why the location of your AI agent is a security decision

Learn how Amazon Web Services (AWS) operates inside a scoped compute environment with an AWS Identity and Access Management (IAM) execution role, network segmentation, and defense-in-depth security meeting FISMA, FedRAMP, and DoD CCSRG standards.

Transforming federal IT with Datadog's FedRAMP Class D (High) solution

Transforming federal IT with Datadog’s FedRAMP Class D (High) solution

In this post, we explore how federal agencies can accelerate modernization, improve cybersecurity incident response, and support continuous compliance monitoring using Datadog’s FedRAMP High authorized observability and security platform.