AWS Public Sector Blog

Category: AWS Identity and Access Management (IAM)

Accelerate IRAP readiness with AWS and Wiz

Accelerate IRAP readiness with AWS and Wiz

Prepare a word document of html for this blog
WordPress HTML Converter

Your WordPress-ready HTML document has been generated and is ready for download.

Here’s a summary of what’s included:

Complete WordPress HTML for the entire blog post in Courier New monospace font for easy copy-paste into the WordPress Text/HTML editor
All section headings formatted as

tags
Body text wrapped in

tags with and formatting preserved
The “To learn more” reference list formatted as

    /

  • All hyperlinks include target=”_blank” rel=”noopener noreferrer”
    Author bios structured with

    About the authors

    followed by name and bio paragraphs
    Image placements marked as italic caption placeholders

    ⚠️ Flagged Items for Review

    The following hyperlinks use placeholder URLs (#) because the actual URLs were not embedded in the source document. You’ll need to manually add the correct URLs:

    “Wiz and Operation StormBreaker case study” — in the Conclusion section
    “Schedule a demo” — call-to-action at the end
    “Transforming Acquisition and Development with Operation Stormbreaker” — FedGov Today link
    “Marine Corps Operation StormBreaker Slashes Software Delivery Timelines by 17x” — GovCIO Media link
    “DoD Modernization Exchange 2026: Reducing ATO burdens” — Federal News Network link
    “Breaking the 18-Month Barrier” — Owl Cyber Defense link
    “Operation StormBreaker” — Government Executive link

    Wiz-AWS-IRAP-Blog-WordPress-HTML.docx
    What would you like to do next?

    Provide the URLs for the placeholder links

    Request formatting adjustments

    Write a two to 3 sentence summary for this blog starting with “In this blog, learn”
    WordPress HTML Converter

    In this blog, learn how AWS and Wiz accelerate IRAP readiness for Australian Government service providers by combining IRAP-assessed infrastructure with automated visibility, architectural guardrails, and continuous compliance monitoring. Discover how the AWS Shared Responsibility Model and Wiz’s contextual risk insights enable organisations to streamline assessments, reduce manual effort, and transform security into a competitive advantage.

Validating infrastructure as code against FedRAMP 20x Shift-left compliance

Validating infrastructure as code against FedRAMP 20x: Shift-left compliance

Catching a compliance violation in production is expensive. Catching it in a pull request is nearly free. In this post, we demonstrate how to build a multi-tool infrastructure as code (IaC) validation pipeline that checks AWS CloudFormation templates and Terraform configurations against Federal Risk and Authorization Management Program (FedRAMP) 20x Key Security Indicators (KSIs) before deployment. Combined with the preventive controls from Preventive controls for FedRAMP 20x: Using SCPs and guardrails to enforce KSIs and the methods to be described in future blog posts, this creates a full-lifecycle compliance architecture.

MARS-E to ARC-AMPE: Guide for state Medicaid agencies on AWS

MARS-E to ARC-AMPE: Guide for state Medicaid agencies on AWS

This post is for two audiences. The first is agencies already running MARS-E-compliant workloads on AWS that are looking to map their existing posture onto the new framework. The second is agencies planning a migration from on-premises infrastructure where ARC-AMPE will be in scope from the first day.

How the University of São Paulo is transforming how researchers access greenhouse gas data for the Amazon rainforest with AWS

How the University of São Paulo is transforming how researchers access greenhouse gas data for the Amazon rainforest with AWS

Learn how researchers in the University of São Paulo Research Center in Greenhouse Gas Innovation (RCGI) greenhouse gas (GHG) program saw an opportunity to develop a system that enabled close monitoring of the forest using data systems and data spaces in the cloud. They created Digital Amazon, a distributed data space network with open access that integrates CO2 and greenhouse gas emissions data collected by the university with other data sources to support critical and timely climate action and intervention in the Amazon Forest.

Prepare for your GovRAMP Progressing Snapshot with AWS

Prepare for your GovRAMP Progressing Snapshot with AWS

In this post, we explain what the Progressing Snapshot program is, what the program is for, who it is for, and how Amazon Web Services (AWS) helps you lay the foundation to address many of the 40 snapshot controls.

Why the location of your AI agent is a security decision

Why the location of your AI agent is a security decision

Learn how Amazon Web Services (AWS) operates inside a scoped compute environment with an AWS Identity and Access Management (IAM) execution role, network segmentation, and defense-in-depth security meeting FISMA, FedRAMP, and DoD CCSRG standards.

A governance framework for building trustworthy agentic AI for public sector and regulated organizations

A governance framework for building trustworthy agentic AI for public sector and regulated organizations

This post outlines a practical governance framework for agentic AI systems, with a focus on public sector and other highly regulated environments. It introduces a scope-based model for classifying agent autonomy, identifies core security dimensions, and describes how organizations can align agentic AI governance with existing risk, compliance, and assurance programs.

Supporting GSA CUI protection requirements with AWS

Supporting GSA CUI protection requirements with AWS

In this blog, we will discuss how federal contractors handling Controlled Unclassified Information (CUI) for the General Services Administration (GSA) face a critical reality when the updated security requirements are required to maintain your contracts. The stakes extend beyond business; inadequate CUI protection compromises sensitive government operations and US national interests. The recently updated GSA IT Security Procedural Guide CIO-IT Security-21-112 Revision 1 (January 2026) aligns with NIST SP 800-171 Revision 3 and sets the bar for protecting CUI in nonfederal systems. Learn how Amazon Web Services (AWS) provides security services specifically designed to help you address these requirements efficiently.

Advancing the defense system lifecycle with digital engineering on AWS

Advancing the defense system lifecycle with digital engineering on AWS

AWS provides infrastructure that enables mission and program teams to build and manage their own digital engineering environments with secure, scalable computing resources and tools. This resource supplier relationship delivers value through cost efficiency, simplified management, reliable failover, and streamlined infrastructure operations. In this post, we provide a detailed walkthrough for building a secure and scalable digital engineering environment on AWS.

Building an identity-verified remote assessment platform on AWS

Building an identity-verified remote assessment platform on AWS

Universities across the UK conduct tens of thousands of online interviews and exams each year. During a single admissions intake, over 20,000 video interviews were recorded for international applicants, with 1.3% of sessions showing confirmed fraud, including 0.15% involving deepfakes. A survey by the International Center for Academic Integrity (ICAI) found that 2% of students […]