Category: Security, Identity, & Compliance

AWS and Telos are pleased to announce that Xacta, a leading cyber governance, risk, and compliance (GRC) platform, has achieved Federal Risk and Authorization Management Program (FedRAMP) High authorization—the program’s highest security level. This achievement validates Telos’s partnership with AWS in delivering enterprise-grade security solutions for US public sector organizations and regulated industries, providing the tools needed to efficiently manage security compliance—from initial assessment through continuous monitoring.

Today, AWS announced the launch of its new Digital Sovereignty Module as part of the AWS Partner Transformation Program (PTP). The module is designed for AWS Partners looking to build digital sovereignty offerings, helping them support public sector and regulated industries customers address their data residency and compliance requirements on AWS. Read this post to learn more.

The University of Notre Dame embarked on a journey to become the first US higher education institution to take a comprehensive, enterprise-wide approach to deploying AWS Web Application Firewall (WAF), AWS Shield Advanced, and AWS Firewall Manager across the entirety of their AWS infrastructure. This meticulous implementation also established a blueprint for other institutions to follow.

Read this post to learn about AWS Wickr, a messaging and collaboration service that protects messaging, calling, file sharing, screen sharing, and location sharing with 256-bit end-to-end encryption (E2EE). Wickr combines advanced security for sensitive communications, administrative controls for user and policy management, and data retention for auditing and regulatory needs.

This post explores how Curtin University, Western Australia’s largest public research university, overcame challenges such as limited technical resourcing, complex security compliance requirements, and manual remediation processes using AWS Managed Services (AMS) Accelerate and the Trusted Remediator solution. The university achieved a 32% improvement in its AWS Security Improvement Program (SIP) score within the first six months of its AMS engagement.

Whether you’re a technical architect, systems integrator, or government technology leader, this post provides the technical insights needed to understand and implement MOSIP (Modular Open-Source Identity Platform) on AWS effectively.

This blog post provides a comprehensive overview of the custom large language model (LLM) development lifecycle for public sector use, emphasizing scientific methodology and measurable outcomes.

Fischer Identity, a leader in identity and access management (IAM) and identity governance for higher education, partnered with the AWS Product Acceleration education technology (EdTech) team to build a generative AI tool that converts natural language into SQL queries—moving from proof of concept in 5 days and to beta readiness in only 6 months. This post explores how the collaboration produced a text-to-SQL solution that nontechnical security administrators can use to get instant answers.

Public sector organizations and technology vendors across industries—from healthcare and education to public safety and citizen services—struggle with complex identity integration requirements when deploying applications across multiple facilities and jurisdictions. This post demonstrates how organizations can eliminate integration delays using an automated metadata extraction solution built on AWS that provides self-service access to Amazon Cognito user pools metadata through a serverless REST API.

This blog explores how the University of Sheffield uses AWS Partner RONIN Core and RONIN Isolate solutions to deliver a Trusted Research Environment (TRE) built on AWS infrastructure, enabling secure research and collaboration with sensitive data through the university’s Data Connect service. Secure and compliant infrastructure is essential for sensitive research. Many research institutions use a research Landing Zone to build Secure Research Environments (SRE) that provide the foundational compliance infrastructure—meeting standards like the National Institutes of Health (NIH) NIST 800-171, ISO 27001, HIPAA, and CMMC—upon which TREs like RONIN can build secure research workflows.