Address your most stringent regulatory and compliance requirements while meeting your mission, with AWS GovCloud (US).

AWS GovCloud (US) is an isolated AWS region designed to host sensitive data and regulated workloads in the cloud, helping customers support their US government compliance requirements, including the International Traffic in Arms Regulations (ITAR) and Federal Risk and Authorization Management Program (FedRAMP) requirements. AWS services the region with U.S. Persons,  the region is built on U.S. soil, and only vetted U.S. Persons are permitted to hold root account credentials.

AWS’s FedRAMP High authorization, which includes over 400 security controls, gives U.S. government agencies the ability to leverage the AWS Cloud for highly sensitive workloads, including Personal Identifiable Information (PII), sensitive patient records, financial data, law enforcement data, and other Controlled Unclassified Information (CUI). Learn more about FedRAMP.

Learn More:

Register to View the Recorded Webinar

AWSGovCloud(US)-highrez
FedRAMP 2017 logo

GovCloud’s FedRAMP High baseline designation applies to non-classified technology systems under the Federal Information Security Management Act (FISMA), with “High” data and workloads characterized as “those which whereby the loss of confidentiality, integrity, or availability of that data would have a potential catastrophic effect on operations, assets, or individuals.”

For the fastest path to an ATO, customers should access the AWS NIST Quick Start tools in the AWS GovCloud (US) Console and deploy FedRAMP High compliant architectures with the click of a button. Learn more.

What is FedRAMP High?

  • FedRAMP is a U.S. government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
  • The new FedRAMP High baseline is mapped to National Institute of Standards and Technology (NIST) security controls, and includes over 400 security measures.
  • The FedRAMP High baseline applies to non-classified technology systems under the Federal Information Security Management Act (FISMA), with “High” characterized as if the loss of confidentiality, integrity, or availability of that data could be expected to have a severe or catastrophic effect on organizational operations, assets, or individuals.
  • It gives US government agencies the ability to leverage the AWS Cloud for workloads with sensitive data, including Personal Identifiable Information (PII), patient records, financial data, law enforcement data, and other Controlled Unclassified Information (CUI).
FedRAMP High Authorized Services in AWS GovCloud (US):
This authorization applies to the AWS GovCloud (US) Region, including: Amazon Elastic Cloud Compute (EC2), Amazon Virtual Private Cloud (VPC), Amazon Simple Storage Service (S3), Amazon Identity and Access Management (IAM), Amazon Elastic Block Store (EBS), Amazon RDS for MySQL, Oracle, and PostgresSQL, Amazon CloudWatch Logs, AWS CloudTrail, AWS CloudFormation, AWS Key Management Service (KMS), Amazon Glacier, Amazon Redshift, Amazon SQS, Amazon SNS, Amazon SWF, Amazon EMR and Amazon DynamoDB.
FISMA logo
600x400_NIST_Logo

AWS GovCloud (US) gives customers the flexibility to architect solutions that are in compliance with the FedRAMP High Baseline, CJIS, ITAR, HIPAA, and the Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) Levels 2 and 4. From Personal Identifiable Information (PII), patient medical records, financial data, law enforcement records, and Controlled Unclassified Information (CUI), AWS GovCloud (US) can help you address compliance at every stage of your cloud journey. Request more information on the AWS GovCloud (US) region FedRAMP package by completing the Compliance Contact Us Request Form.

 

Why AWS GovCloud (US)?

Control Access to Achieve Compliance: AWS GovCloud (US) allows agencies to adhere to US International Traffic in Arms Regulations (ITAR) regulations, the Federal Risk and Authorization Management Program (FedRAMP) requirements, and Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) Levels 2 and 4.

Safeguard Sensitive Data: Protect sensitive unclassified data files with server side encryption in Amazon S3; store and manage security keys yourself with AWS CloudHSM or use our one-click AWS Key Management Service (KMS).

Improve Cloud Visibility: Audit access and use of sensitive data with your keys in Amazon CloudTrail— our API logging service, managed and operated by US Persons.

Strengthen Identity Management: Limit access to sensitive data by individual, time, location, and restrict which API calls that users are able to make with identity federation, easy key rotation, and other powerful access control testing tools that are available.

Contact Us