AWS Public Sector Blog
Tag: AWS CloudFormation
How NLCHI provides hybrid access to their EHR system through AWS PrivateLink
The Newfoundland and Labrador Centre for Health Information (NLCHI) provides quality information to health professionals, the public, researchers, and health system decision makers. Through collaboration with the health system, NLCHI supports the development of data and technical standards, maintains key health databases, carries out analytics and evaluation, and supports health research. This post details how NLCHI is able to provide secure and scalable access to their on-premises provincial electronic health record (EHR) system, by trusted and authorized partners who run on AWS, through the use of AWS PrivateLink, Network Load Balancer, and AWS Site-to-Site VPN.
Modern data engineering in higher ed: Doing DataOps atop a data lake on AWS
Modern data engineering covers several key components of building a modern data lake. Most databases and data warehouses, to an extent, do not lend themselves well to a DevOps model. DataOps grew out of frustrations trying to build a scalable, reusable data pipeline in an automated fashion. DataOps was founded on applying DevOps principles on top of data lakes to help build automated solutions in a more agile manner. With DataOps, users apply principles of data processing on the data lake to curate and collect the transformed data for downstream processing. One reason that DevOps was hard on databases was because testing was hard to automate on such systems. At California State University Chancellors Office (CSUCO), we took a different approach by residing most of our logic with a programming framework that allows us to build a testable platform. Learn how to apply DataOps in ten steps.
Enabling SAML 2.0 federation with AWS IAM Identity Center and AWS GovCloud (US)
AWS IAM Identity Center helps administrators centrally manage access to multiple AWS accounts that are members of an AWS Organization. End users can authenticate and then access all their AWS accounts from a single interface. Using IAM Identity Center as a SAML identity provider for your AWS accounts also has security benefits: user credentials provided via federation are temporary. IAM Identity Center does not automatically detect AWS GovCloud (US) accounts associated with standard AWS accounts in your AWS Organization. IAM Identity Center is also not currently available in AWS GovCloud (US). As a result, IAM Identity Center cannot be used to automatically provision access for your users into an AWS GovCloud (US) account. However, this functionality can be extended to enable federation into AWS GovCloud (US) with a “custom SAML 2.0 application” in IAM Identity Center.
Announcing Service Workbench on AWS: A fast and simple solution to create a collaborative research environment
Today, Amazon Web Services (AWS) announced Service Workbench on AWS, a web portal for researchers to deploy domain-specific data and tools on secure IT environments in minutes not months. Customers can accelerate research while promoting repeatability, multi-site collaboration, and cost transparency in the research process. Tailored for researchers, Service Workbench helps quickly and securely stand up research environments for their work, allowing them to focus on the research not the technology.
How public sector security teams can use serverless technologies to improve outcomes
Serverless applications are typically discreet pieces of code that customers can use to manage security-related processes or stitch together multiple AWS services to solve a larger problem. They allow customers to build and run applications and services without dealing with infrastructure management tasks such as server or cluster provisioning, patching, operating system maintenance, and capacity provisioning. In this blog, I explain the serverless computing model, the Serverless Application Repository (SAR), solution constructs and implementations, why they matter to our government customers, and how they can use them to solve common problems.
Building a government update notification system
Now more than ever, citizens expect effective communications from government agencies in response to COVID-19. These state and local leaders are committed to serving their citizens with the latest news as fast as possible, but not all strategies reach citizens in real time. However, it takes time for the government to implement widely available communication services to provide timely, accurate information. One solution is to concentrate the delivery of information in a single communication channel: SMS text messages.
How nonprofit civic organizations use the cloud to meet registration demand and modernize voter education
Tuesday, September 22, 2020 is National Voter Registration Day, a nonpartisan civic holiday in the United States celebrating democracy with a mission to create broad awareness of registration opportunities for voters. Learn how nonprofit civic organizations use the cloud to meet their mission in a secure, scalable, and cost-effective way on National Voter Registration Day and throughout the election cycle.
Adding an ingress point and data management to your healthcare data lake
Data lakes can help hospitals and healthcare organizations turn data into insights and maintain business continuity, while preserving patient privacy. A data lake is a centralized, curated, and secured repository that stores all your data, both in its original form and prepared for analysis. A data lake enables you to break down data silos and combine different types of analytics to gain insights and guide better business decisions. In my previous post, “Getting started with a healthcare data lake,” I shared how to get started using data lakes in managing healthcare data and what a good “first sprint” architecture might look like. Here, I walk through building your first solution on AWS using a healthcare data lake as our example workload.
Social emotional learning: Using cloud technology to support student learning
Research shows that social emotional learning (SEL) increases student engagement at school, increases academic achievement, and helps students to be more successful in all aspects of life. FamilyBookForm, an AWS EdStart Member, aims to encourage SEL through their online book creation tool that allows K12 students to interview members of their family or community to collect spoken stories, in any language. The tool uses speech-to-text voice recognition technology and is powered by the AWS Cloud.
Raising the bar on storage: How to improve your disaster recovery, ransomware prevention, and backup strategy
Data is an organization’s critical asset, which is why safeguarding it against ransomware attacks, natural disasters, emergencies, or technical failures is a top priority. Legacy data storage, such as tape, makes sharing and protecting data costly and time consuming. AWS released a series of educational webinars and whiteboarding videos that discuss how to raise the bar on data protection in the AWS Cloud.