AWS GovCloud (US)
Amazon's Regions designed to host sensitive data, regulated workloads, and address the most stringent U.S. government security and compliance requirements.
Introduction to the AWS GovCloud (US) Regions
AWS GovCloud (US) gives government customers and their partners the flexibility to architect secure cloud solutions that comply with the FedRAMP High baseline; the DOJ’s Criminal Justice Information Systems (CJIS) Security Policy; U.S. International Traffic in Arms Regulations (ITAR); Export Administration Regulations (EAR); Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) for Impact Levels 2, 4 and 5; FIPS 140-2; IRS-1075; and other compliance regimes.
AWS GovCloud (US-East) and (US-West) Regions are operated by employees who are U.S. citizens on U.S. soil. AWS GovCloud (US) is only accessible to U.S. entities and root account holders who pass a screening process. Customers must confirm that they will only use a U.S. person (green card holder or citizen as defined by the U.S. Department of State) to manage and access root account keys to these regions.
From Controlled Unclassified Information (CUI), Personally Identifiable Information (PII), sensitive patient medical records, and financial data to law enforcement data, export controlled data and other forms of CUI, AWS GovCloud (US) Regions can help customers address compliance at every stage of their cloud journey.
Why AWS GovCloud (US)?
Meet compliance mandates
AWS GovCloud (US) enables customers to adhere to ITAR regulations, the FedRAMP requirements, Defense Federal Acquisition Regulation Supplement (DFARS), DoD (SRG) Impact Levels 2 and 4 and 5, and several other security and compliance requirements.
Safeguard sensitive data
Protect sensitive unclassified data files with server-side encryption in Amazon S3. Store and manage security keys yourself with AWS CloudHSM or use our one-click AWS Key Management Service (AWS KMS).
Strengthen identity management
Limit access to sensitive data by individual, time, and location and restrict which API calls users are able to make with identity federation, easy key rotation, and other powerful access control testing tools that are available.
Improve cloud visibility
Audit access and use of sensitive data with your keys in AWS CloudTrail, our API logging service, managed and operated by U.S. citizens.
Protect accounts and workloads
Secure your AWS accounts and workloads with continuous security monitoring using Amazon GuardDuty. Amazon GuardDuty monitors for malicious or unauthorized behavior, such as unusual API calls or potentially unauthorized deployments, that may indicate a possible account compromise.
Supporting mission-critical workloads
For Oracle, SAP, and Microsoft Windows enterprise applications, reliability is critical. Organizations have traditionally provisioned applications for peak demand and disaster recovery (DR) scenarios, which often leave IT resources idle or underutilized. With AWS, you can improve reliability with cloud backups and optimize costs by paying only for the cloud resources you use.
High performance computing
Many agencies are amassing large data sets that hold critical insights. With AWS, you can spin up massive on-demand clusters of compute resources in minutes, pay only for compute power used, and obtain the intelligence needed to serve your mission and citizens.
AWS gives you fast access to flexible and low cost IT resources, so you can rapidly scale virtually any big data application, including data warehousing, clickstream analytics, fraud detection, recommendation engines, event-driven ETL, serverless computing, and Internet of Things (IoT) processing. Provision exactly the right type and size of resources you need to power your big data analytics applications.
Storage & disaster recovery
Add scalable capacity any time, and access durable and cost-effective cloud storage managed by U.S. persons, while meeting your data security requirements. Back up, store, and recover IT systems in seconds by supporting popular DR approaches from simple backups to hot standby solutions that failover at a moment’s notice.
Address security and compliance requirements
AWS GovCloud (US) case studies
The Department of Veterans Affairs issued a FISMA High Authority to Operate (ATO) for AWS GovCloud (US), using the regions to store and protect patient data critical to America’s veterans. Learn more >
Cloud.gov, built by GSA’s 18F, helps other government agencies build, buy, and share technology products, while minimizing the FedRAMP compliance work they need to execute themselves. Learn more >
The Department of Justice leverages AWS GovCloud (US) for mission-critical workloads, DevTest, and delivery of advanced capabilities. Learn more >
The U.S. Department of Treasury delivers mission assurance while enabling digital transformation in AWS GovCloud (US). Learn more >
The U.S. Department of Homeland Security's HSIN information sharing platform is a FedRAMP High system, securely enabled in AWS GovCloud (US). Learn more >
The State of Kansas and AWS Partner, PayIt, enhanced the citizen experience with government services by deploying an online and mobile license renewal app in less than 60 days. Learn more >
NASA Jet Propulsion Laboratory innovates while improving governance, security, and compliance in AWS GovCloud (US). Learn more >
Lockheed Martin lowers capex and addresses its ITAR requirements by moving its SAP HANA ERP suite of applications to the AWS GovCloud (US) Regions. Learn more >
FIGmd operates one of the largest clinical-data registries in the U.S. See how they achieve HIPAA, HITECH, ACA, and FedRAMP compliance and reduce risks associated with the transmission of sensitive data. Learn more >
Raytheon deploys test environments in 15 minutes instead of four months, in AWS GovCloud (US). Learn more >
Motorola Solutions improves public safety and addresses CJIS requirements with their platform, which detects missing persons with Amazon Rekognition in AWS GovCloud (US). Learn more >
Government Cloud Plus runs on AWS GovCloud (US) and meets FedRAMP’s High Baseline, enabling enhanced security and compliance controls that allow customers to use Salesforce for the most sensitive, unclassified data. Learn more >
After acquiring a series of independent power producers (IPPs) and their IT assets, Talen Energy migrated to AWS GovCloud (US) to meet its NRC, FERC, and 10 CFR 810 requirements. Learn more >
The Cobham Advanced Electronic Solutions InfoSec team replaced its no-cloud policy with a cloud-first policy, improving agility, innovation, and security in the process. Learn more >
GDIT leverages its hands-on experience with AWS GovCloud (US) to better serve government customers with strict regulatory compliance needs, including FedRAMP High requirements. Learn more >
Zero Trust Architectures on AWS GovCloud (US)
Learn about our collaborative approach to Zero Trust architecture, which includes AWS Partner Network (APN) partners and provides customers with flexible options that support existing tooling, avoid vendor lock-in, and integrate capabilities across cloud-native, hybrid and on-premises environments.
Achieving mission outcomes through zero trust on AWS GovCloud (US)
Watch the video to learn how you can reduce your organizational security risk, and achieve mission and business outcomes through Zero Trust architectures on AWS GovCloud (US).
Deploy Amazon Connect inside the FedRAMP High boundary
Learn how to securely deploy a FedRAMP High compliant instance of Amazon Connect contact center in the AWS GovCloud (US). With conversational AI features, organizations can automate routing of callers and chatters to the agents who are best suited to assist them.
The AWS Cloud platform expands daily. Browse below to learn about the latest product, service, and feature announcements in the AWS GovCloud (US) Regions.