AWS Security Blog
New IRAP report provides Australian public sector the ability to leverage additional services at PROTECTED level
September 9, 2021: Amazon Elasticsearch Service has been renamed to Amazon OpenSearch Service. See details.
Following the award of PROTECTED certification to AWS in January 2019, we have now released updated Information Security Registered Assessors Program (IRAP) PROTECTED documentation via AWS Artifact. This information provides the ability to plan, architect, and self-assess systems built in AWS under the Digital Transformation Agency’s Secure Cloud Guidelines. The new documentation expands the scope to 64 PROTECTED services, including new category areas such as artificial intelligence (AI), machine learning (ML), and IoT services. For example, Amazon SageMaker is a service that provides every developer and data scientist with tools to build, train, and deploy machine learning models quickly.
This documentation gives public sector customers everything needed to evaluate AWS at the PROTECTED level. AWS is making this resource available to download on-demand through AWS Artifact. The guide provides a mapping of AWS controls for securing PROTECTED data.
The AWS IRAP PROTECTED documentation helps individual agencies simplify the process of adopting AWS services. The information enables individual agencies to complete their own assessments and adopt AWS for a broader range of services. These assessed AWS services are available within the existing AWS Asia-Pacific (Sydney) Region and cover service categories such as compute, storage, network, database, security, analytics, AI/ML, IoT, application integration, management, and governance. This means you can take advantage of all the security benefits without paying a price premium, or needing to modify your existing applications or environments.
The newly added services to the scope of the IRAP document are listed below.
- AWS AppSync
- AWS Database Migration Service (DMS)
- AWS Fargate
- Amazon Simple Email Service (SES)
- Amazon Athena
- Amazon Aurora (MySQL and PostgreSQL)
- Amazon CloudWatch Events (CWE)
- AWS CodeDeploy
- AWS Elastic Beanstalk
- Amazon Elastic Container Registry (ECR)
- Amazon Elasticsearch Service
- AWS Glue
- AWS IoT Core
- Amazon Polly
- Amazon RDS for SQL Server
- Amazon SageMaker
- VM Import/Export
- AWS Shield Advanced
For the full list of services in scope of the IRAP report, see the services in scope page (select the IRAP tab).
If you have questions about our PROTECTED certification or would like to inquire about how to use AWS for your highly sensitive workloads, contact your account team.
Want more AWS Security how-to content, news, and feature announcements? Follow us on Twitter.