Tag: compliance

The use of consumer-grade messaging applications poses significant security and sovereignty risks for Australian Government agencies, making it difficult to meet governmental information management obligations. Official guidance from the National Archives of Australia (NAA) unambiguously states that “instant messaging posts … created or received as part of Australian Government business are Commonwealth records.” Amazon Web Services (AWS) Wickr is an end-to-end encrypted messaging and collaboration service that provides the advanced security, administrative controls, and data retention capabilities government agencies need to protect sensitive information and meet legislative requirements. Read this post to learn more.

In this post, we show you how you can push or pull your security telemetry data to the National Cybersecurity Protection System (NCPS) Cloud Log Aggregation Warehouse (CLAW) using Amazon Web Services (AWS) Simple Storage Service (Amazon S3) or third-party solutions.

K12 leaders need tangible solutions and tactics for improving their school’s or district’s cyber-resilience in the coming school year, and Amazon Web Services (AWS) is committed to supporting schools and districts as they enhance the cybersecurity of their networks. Recently, AWS joined the White House, the Department of Homeland Security, and the Department of Education—among other leaders in the government and education community—to commit to improving the cybersecurity resilience of K12 education. As part of this commitment, AWS created the K12 Cyber Grant Program, offering up to $20 million in AWS Promotional Credits to both new and existing K12 customers.

In this post, we explore the complexities of data privacy and controls on Amazon Web Services (AWS), examine how creating a landing zone within which to contain such data is important, and highlight the differences between creating a landing zone from scratch compared with using the AWS Landing Zone Accelerator (LZA) for Healthcare. To aid explanation, we use a simple healthcare workload as an example. We also explain how LZA for Healthcare codifies HIPAA controls and AWS Security Best Practices to accelerate the creation of an environment to run protective health information workloads in AWS.

The European Health Data Space (EHDS) will establish a common framework and infrastructure for the use of health data for research, innovation, policy-making, and regulatory activities in the European Union (EU). It will also create common standards and practices enabling EU citizens to better access, control, and share their electronic personal health data. Read this post to learn why Amazon Web Services (AWS) welcomes the EHDS as an important step towards unleashing the vast potential of health data to benefit citizens across Europe and beyond.

Idaho deputy controller Josh Whitworth, who leads the state’s enterprise resource planning (ERP) modernization efforts, believes in looking beyond what legacy applications were designed to do decades ago to see the solutions of tomorrow. That view has helped Whitworth and his team transform Idaho’s back-office infrastructure and related processes. Read this blog post to learn how Amazon Web Services (AWS) helped Idaho modernize its ERP.

Credit unions face unique security, regulatory, and compliance obligations. These requirements mean that a sound cybersecurity posture is essential for credit unions across both cloud workloads and on-premises technology. Read this blog post to learn how Amazon Web Services (AWS) can help credit unions prepare for audits, assess security posture, and produce documentation for state or federal regulators.

Compliance is essential, but ensuring compliance in the cloud with various regulations and standards can be challenging, especially for public sector organizations. The requirements are highly dynamic, constantly evolving, and they vary across countries. Read this blog post to learn about the Amazon Web Services (AWS) resources that can help customers meet compliance requirements, reduce their time and effort, and focus on core business objectives.

Amazon Web Services (AWS) has collaborated with the UK National Cyber Security Centre (NCSC) to tailor advice on how UK public sector customers can use the Landing Zone Accelerator on AWS (LZA) to meet the NCSC’s guidance on “using cloud services securely.” Read this blog post to learn how the LZA on AWS can support each recommended action in the NCSC’s guidance.

This blog post provides technical guidance for UK organisations to implement their landing zone in-line with guidance from the UK National Cyber Security Centre (NCSC) using the LZA.