Q: What are the prerequisites before I can deploy the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution?

A: The AWS account used to launch the solution must be enabled to access AWS GovCloud (US) and you must be authorized to create accounts in the AWS GovCloud (US) Region. For more information about the AWS GovCloud (US) Region, refer to the AWS GovCloud (US) User Guide.

Q: I have deployed the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US); is my environment now considered DoD CC SRG or CMMC compliant?

A: No. This solution will not, by itself, make you DoD CC SRG or CMMC compliant. It provides the foundational infrastructure from which additional complimentary solutions can be integrated. You must review, evaluate, assess, and approve the solution in compliance with your organization’s particular security features, tools, and configurations. It is your responsibility to determine which regulatory requirements are applicable for your particular workload, and to ensure that you comply with all applicable requirements.

Q: Where can I find more information about the compliance programs cited in this solution?

A: We have published additional resources available for AWS DoD Compliance, including the AWS Services in Scope by Compliance Program, and Cybersecurity Maturity Model Certification (CMMC) guidance.

Q: Can I deploy Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) in any AWS Region?

A: By default, this solution will deploy into AWS GovCloud (US-West) and can be customized to deploy into AWS GovCloud (US-East). Please contact AWS Professional Services or your AWS account manager for more information.

Training and Certification

AWS Training and Certification builds your competence, confidence, and credibility through practical cloud skills that help you innovate and build your future.  Learn more »

Getting Started with AWS Security, Identity, and Compliance

This course provides an overview of AWS security technology, use cases, benefits, and services. The course introduces various services in the AWS Security, Identity, and Compliance service category. By the end of this course, you will gain an understanding about the importance of security in the cloud and be able to identify AWS services that you can use to secure your data. 

Enroll now »

AWS Security Fundamentals

In this self-paced course, you will learn fundamental cloud computing and AWS security concepts, including AWS access control and management, governance, logging, and encryption methods. We will address security-related compliance protocols, risk management strategies, and procedures related to auditing your AWS security infrastructure.

Enroll now »

Security Engineering on AWS

This course demonstrates how to efficiently use AWS security services to stay secure in the AWS Cloud. The course focuses on the security practices that AWS recommends for enhancing the security of your data and systems in the cloud. It highlights the security features of AWS key services including compute, storage, networking, and database services. You will also learn how to leverage AWS services and tools for automation, continuous monitoring and logging, and responding to security incidents.

Enroll now »

Partner resources

The AWS Partner Network (APN) is focused on helping partners build successful AWS-based businesses to drive superb solutions and customer experiences. APN Partners are focused on customer success, helping you take full advantage of all the business benefits that AWS has to offer. With their deep expertise on AWS, APN Partners are uniquely positioned to help your company at any stage of your Cloud Adoption Journey and to help you solve some of your most complex problems.

Need more resources to get started with AWS?

Visit the Getting Started Resource Center to find tutorials, projects and videos to get started with AWS.

Learn more »