12 additional AWS services and 2 features authorized at DoD Impact Level 4 and 5 for AWS GovCloud (US) Regions

I’m excited to share that the Defense Information Systems Agency (DISA) has authorized 12 additional AWS services and 2 features in AWS GovCloud (US) Regions. With these additional 12 services and 2 features, AWS now offers a total of 52 services authorized to process DoD mission critical data at Impact Levels (IL) 4 and 5 under the DoD’s Cloud Computing Security Requirements Guide (DoD CC SRG).

The authorization at DoD IL 4 and IL 5 allows DoD Mission Owners to process controlled unclassified information (CUI) and to include mission critical workloads for National Security Systems in AWS GovCloud (US) Regions. This is in addition to the work AWS does in supporting the full range of U.S. Government data classifications. AWS remains the only Cloud Service Provider accredited to address the full range, including Unclassified, Secret and Top Secret.

AWS successfully completed an independent, third-party evaluation that confirmed AWS effectively implemented over 400 security controls using applicable criteria from NIST SP 800-53 Rev 4, the US General Services Administration’s FedRAMP High baseline, the DoD CC SRG, and the Committee on National Security Systems Instruction No. 1253 at the High Confidentiality, High Integrity, and High Availability impact levels.

The newly authorized AWS services and features provide additional choices for DoD Mission Owners to enhance the security of their workloads with continuous threat monitoring; optimize and modernize their database and data analytics operations; conduct deep learning on images and video streams; build out Internet of Things (IoT) environments; and leverage fully-managed, cloud-based virtual desktops.

Recently authorized AWS services and features at DoD Impact Levels 4 and 5

• Amazon Athena
• Amazon Aurora (MySQL)
• Amazon Aurora (PostgreSQL)
• Amazon GuardDuty
• Amazon RDS for SQL Server (feature of Amazon Relational Database Service)
• Amazon Rekognition
• Amazon WorkSpaces
• AWS Direct Connect
• AWS Directory Service
• AWS Glue
• AWS IoT Core
• AWS IoT Device Management
• AWS Server Migration Service
• VM Import/Export (feature of Amazon EC2)

To learn more about AWS solutions for DoD, please see our AWS solution offerings. Follow the AWS Security Blog for future updates on our Services in Scope by Compliance Program page. If you have feedback about this blog post, let us know in the Comments section below.

Want more AWS Security how-to content, news, and feature announcements? Follow us on Twitter.