AWS Public Sector Blog

Tag: cybersecurity

Building a serverless web application architecture for the AWS Secure Environment Accelerator (ASEA)

Government departments work hard to meet required security framework controls for cloud services, and obtaining an Authority to Operate (ATO) can sometimes take up to 18 months. To assist with this process, AWS developed the open-source AWS Secure Environment Accelerator (ASEA), a tool designed to help deploy and operate secure multi-account AWS environments. This post describes how government departments can more simply deploy a web application consisting of a single-page application (SPA), backend API, and database within ASEA.

Read More

AWS resources to address Apache Log4j vulnerabilities

This post aims to provide a summary of all the currently disclosed Apache Log4j issues as well as important resources that Amazon Web Services (AWS) has released to help our customers and partners limit any risks posed by these issues.

Read More

Cloud security design considerations for state and local government

State and local government (SLG) organizations need to reflect and refocus on cyber hygiene and continuous improvement of their security posture. Here are some best practices for SLG chief information security officers (CISOs) and IT professionals to consider in their cloud journey.

Read More

Automate security orchestration in AWS Security Hub with Trend Micro Cloud One

As organizations mature in their cybersecurity capabilities, they are looking to try and leverage automation to reduce the operational burden of alerting, detecting, and responding to threats. This blog post walks through how to combine findings from disparate security systems into a single operational view to help analysts identify, respond, and remediate existing threats while maintaining a dynamic response platform that scales with their environment.

Read More

Canadian Centre for Cyber Security adds additional AWS services to its assessment of the AWS Canada (Central) Region

The Canadian Centre for Cyber Security (CCCS) added more AWS services to its assessment of the AWS Canada (Central) Region, bringing the total number of assessed AWS services to 120. This provides Canadian public sector customers additional confidence that AWS Cloud services meet the Government of Canada’s security control requirements. Using these services in conjunction with the deployment of the open source AWS Secure Environment Accelerator (ASEA) solution reduces cloud service configuration time from months to days.

Read More

What you need to know about the Executive Order on Improving the Nation’s Cybersecurity and how AWS can help

President Biden’s executive order emphasizes the need to elevate information security as a core tenet of national security, and calls on federal agencies and public sector organizations to work with the private sector to prioritize the data security and privacy of the American people and government. AWS and AWS Partners can help government agencies align with the initiatives in this executive order.

Read More
US Capitol angle up

How cloud can help agencies enhance security, save costs, and improve mission delivery through the Technology Modernization Fund (TMF)

With a new round of funding, the US federal government has the opportunity to advance the largest government-wide technology modernization program in a generation. As part of the American Rescue Plan that was signed into law in March, federal agencies are eligible to modernize their mission delivery with additional money available in the Technology Modernization Fund (TMF). Cloud computing offers a variety of solutions agencies can consider for TMF projects.

Read More
laptop in dark with code on screen; Photo by Markus Spiske on Unsplash

Remote workforce, web portal, and DevSecOps: Three focus areas for cybersecurity

According to the 2020 Deloitte-NASCIO Cybersecurity Study for state governments, 54 percent of states are not confident in their ability to protect emerging technology. Traditional cybersecurity approaches can result in singularly focused solutions that don’t provide holistic protection. It can also inhibit an organizations’ ability to monitor and respond to security threats in real time. As more organizations shift to cloud-based workloads, security mechanisms and components need to be developed and integrated using a Security by Design (SbD) approach. Our AWS Partners have developed pre-configured security solutions, which allow customers to deploy applications using SbD strategies and also use AWS security solutions to ensure continuous security alignment. 

Read More
NPower

Upskilling the next generation of cloud talent

As the U.S. begins to rebound from the health and economic disruption, experts predict that the technology sector will help lead the way to job growth and economic recovery. The challenge is how and where to source the talent needed to fill in-demand jobs. As more companies embrace migration to the cloud, finding professionals with the specialized skills and expertise will be critical to business success. NPower is a national nonprofit with a mission to provide career opportunities and training to underserved populations including young adults, minorities, women, and veterans. In 2017, NPower partner Accenture proposed a new opportunity to develop a best-in-class cloud program with AWS.

Read More
Canberra

Helping the Australian Government innovate securely in the world’s most secure cloud

The rapid acceleration of digital transformation has raised expectations for efficient and effective engagement with service providers. Many expect the same engagement with government agencies as they do from consumer services such as video-on-demand, ecommerce, and online food delivery. In Australia, the government is prioritising delivering services through technology in a fast and secure way. The CSCP was closed in March 2020 and the ISM was updated to remove the requirement to select services from the Certified Cloud Services List (CCSL). However, the discontinuation of the CSCP does not alter Amazon Web Services (AWS) commitment to help Australian Government agencies innovate rapidly and securely.

Read More