AWS Storage Blog

Category: Security, Identity, & Compliance

Securing AWS Transfer Family with AWS Web Application Firewall and Amazon API Gateway

AWS Transfer Family is a fully managed, serverless file transfer service for Amazon S3 and Amazon EFS. The service provides you with the flexibility to authenticate your file transfer client users using credentials stored in an identity provider (IdP) of your choice. You can achieve this by integrating an Amazon API Gateway endpoint backed by an AWS Lambda function that […]

Read More

Secure data recovery with cross-account backup and Cross-Region copy using AWS Backup

There are many benefits to using more than one AWS account, including resource and operational isolation, disaster recovery (DR), security boundaries, and cost tracking. Having a multi-account strategy is critical to maintaining business continuity and achieving regulatory compliance. Protecting and securing business-critical data in the cloud is complex, challenging, and time-consuming. Customers want a centralized […]

Read More
Amazon S3

Limit access to Amazon S3 buckets owned by specific AWS accounts

Customers use Amazon S3 to store and protect data for a range of use cases, including data lakes, enterprise applications, backup, and archive. Amazon S3 provides easy-to-use management features, fine-grained access controls, strong consistency, and durability to meet a range of business, organizational, and compliance requirements. A common data loss prevention requirement is ensuring that […]

Read More
Amazon S3

Using job tags to manage permissions for Amazon S3 Batch Operations jobs

As organizations grow their use of AWS, they often find that a variety of teams and applications begin to use the data stored in Amazon S3. While customers love the agility benefits of this, they also seek to govern their data’s security, productivity, and cost. Earlier this year we announced support for job tags with […]

Read More
re:Invent

Automating copying encrypted Amazon EBS snapshots across AWS accounts

Many customers have disaster recovery (DR) best practices that require them to copy their Amazon EBS snapshots to an isolated account in a different Region and encrypt those snapshots with a different key. In doing so, customers are able to protect themselves from data loss if any number of disasters compromise their accounts. With Amazon […]

Read More

How Discover Financial secures file transfers with AWS Transfer Family

Discover Financial Services (NYSE: DFS) is a digital banking and payment services company with one of the most recognizable brands in US financial services. Since its inception in 1986, Discover has become one of the largest card issuers in the United States. We are proud members of the platform team at Discover, where we are […]

Read More

OpenGamma improves security and reduces overhead using AWS Transfer Family

OpenGamma provides hosted analytics services to derivative-trading firms in the financial services industry. These firms often face the challenge of adapting to new regulatory standards. Since 2008, new regulation has aimed to improve global financial stability by increasing the requirements on firms to post margin in order to protect against default and systemic failure. As […]

Read More

AWS Backup provides centralized data protection across your AWS resources

Today, on AWS Storage Day 2020, we are excited to announce AWS Backup supports backups of Amazon FSx file systems and Windows workloads running on EC2, adding to the growing list of features to enhance your data protection. Amazon FSx customers may now enjoy the automation, ease-of-use, and managed compliance protection service that AWS Backup […]

Read More

Enable password authentication for AWS Transfer Family using AWS Secrets Manager (updated)

AWS Transfer Family provides a service-managed directory to store user credentials for users authenticating with an SSH key over the Secure File Transfer Protocol (SFTP). If you must authenticate users by password, connect using the older File Transfer Protocol (FTP) and File Transfer Protocol Secure (FTPS), or would just like to integrate with your own […]

Read More

Centralized cross-account management with Cross-Region copy using AWS Backup

Many organizations begin their cloud journey with a single AWS account and gradually expand their cloud presence into a multi-account environment for regulatory, compliance, security, or cost tracking purposes. Organizations often choose to deploy workloads and applications in multiple Regions on AWS Global Infrastructure for high availability, scalability, and performance. Building and operating in multi-account […]

Read More