Category: Security, Identity, & Compliance

AWS and Telos are pleased to announce that Xacta, a leading cyber governance, risk, and compliance (GRC) platform, has achieved Federal Risk and Authorization Management Program (FedRAMP) High authorization—the program’s highest security level. This achievement validates Telos’s partnership with AWS in delivering enterprise-grade security solutions for US public sector organizations and regulated industries, providing the tools needed to efficiently manage security compliance—from initial assessment through continuous monitoring.

Today, AWS announced the launch of its new Digital Sovereignty Module as part of the AWS Partner Transformation Program (PTP). The module is designed for AWS Partners looking to build digital sovereignty offerings, helping them support public sector and regulated industries customers address their data residency and compliance requirements on AWS. Read this post to learn more.

While Criminal Justice Information Services (CJIS)-compliant workloads can run in standard US AWS Regions, some Justice and Public Safety (JPS) agencies may choose AWS GovCloud (US) for their sensitive workloads. These organizations can securely access cutting-edge artificial intelligence (AI) models from AWS Standard US Regions through FIPS-validated endpoints ensuring that all data is securely encrypted with FIPS 140-3 encryption as required by CJIS. This access can maintain CJIS compliance through secure cross-partition connectivity.

The University of Notre Dame embarked on a journey to become the first US higher education institution to take a comprehensive, enterprise-wide approach to deploying AWS Web Application Firewall (WAF), AWS Shield Advanced, and AWS Firewall Manager across the entirety of their AWS infrastructure. This meticulous implementation also established a blueprint for other institutions to follow.

In this technical post, we walk you through the step-by-step process of securely integrating an external AWS account with AWS IAM Identity Center to enable single sign-on access

Read this post to learn about AWS Wickr, a messaging and collaboration service that protects messaging, calling, file sharing, screen sharing, and location sharing with 256-bit end-to-end encryption (E2EE). Wickr combines advanced security for sensitive communications, administrative controls for user and policy management, and data retention for auditing and regulatory needs.

This post explores how Curtin University, Western Australia’s largest public research university, overcame challenges such as limited technical resourcing, complex security compliance requirements, and manual remediation processes using AWS Managed Services (AMS) Accelerate and the Trusted Remediator solution. The university achieved a 32% improvement in its AWS Security Improvement Program (SIP) score within the first six months of its AMS engagement.

Whether you’re a technical architect, systems integrator, or government technology leader, this post provides the technical insights needed to understand and implement MOSIP (Modular Open-Source Identity Platform) on AWS effectively.

This blog post provides a comprehensive overview of the custom large language model (LLM) development lifecycle for public sector use, emphasizing scientific methodology and measurable outcomes.

Fischer Identity, a leader in identity and access management (IAM) and identity governance for higher education, partnered with the AWS Product Acceleration education technology (EdTech) team to build a generative AI tool that converts natural language into SQL queries—moving from proof of concept in 5 days and to beta readiness in only 6 months. This post explores how the collaboration produced a text-to-SQL solution that nontechnical security administrators can use to get instant answers.