Category: Best Practices

In my time working for the UK government’s Digital Marketplace as the service manager, I saw first-hand the benefits of open source in government. Combined with transparent processes, using open source solutions helped streamline digital project execution, build trust with constituents and the global community, and save time and money. Now, as the senior manager of government services (GovServices) at AWS, and as a teacher for the AWS Institute Executive Education Program, I want to share best practices for government leaders looking to use open source solutions.

To drive innovation and optimise operations in the Amazon Web Services (AWS) Cloud, UK public sector organizations need to transfer data quickly and safely, in accordance with the National Cyber Security Centre (NCSC)’s guidance on how to configure, deploy, and use cloud services securely. The NCSC provides security guidance for protecting government systems, planning for cyber incidents, and more. In this post, we cover how you can configure AWS services—like AWS DataSync, AWS Storage Gateway, and AWS Transfer Family—to align your data transfer solution with the NCSC’s cloud security principles, as understanding these configurations is important to protect data and meet requirements for local force accreditation.

To better understand the rapidly evolving workforce landscape and help our customers address barriers to digital skilling, AWS commissioned the strategy and economics consulting firm AlphaBeta to examine the skills needs of organizations across Australia, India, Indonesia, Japan, New Zealand, Singapore, and South Korea. In this blog post, we outline key insights from the report, “Building Digital Skills for the Changing Workforce,” and provide examples for how governments, employers, training providers, and the technology industry can come together to meet this challenge.

Increased digitalization is transforming the payments landscape. Over 85 countries, representing over 90% of global GDP, are researching the possibility of launching a retail central bank digital currency (CBDC). However, as central banks evaluate the pros and cons of CBDCs, they are considering different approaches and designs to address the variety of needs and situations of each country. To advance understanding in this space, AWS worked with the Oliver Wyman Forum on a whitepaper which outlines a framework that can help support policymakers in evaluating the interdependencies between policy and technology choices. In this blog post, we summarize key principles outlined in the framework.

To better understand the challenges and opportunities in digital healthcare adoption, think tank ACCESS Health International and the AWS Institute conducted research across 12 countries in the Asia Pacific in order to understand government and industry perspectives on cloud adoption for public healthcare. The findings are presented in the “Overcoming Barriers to Cloud Adoption in Public Healthcare in the Asia-Pacific” report. Read on for a summary of the research’s key findings.

Governments are increasingly adopting digital ID systems to improve inclusion and accessibility to public services. Based on the experiences shared by governments and by AWS experts who have worked to implement digital ID around the world, six lessons emerge about how to create the right strategic mindset for digital ID creation and implementation.

Disaster recovery is a crucial investment for public sector organizations. However, out-of-date disaster recovery and business continuity planning (BCP) policies prevent organizations from improving in these essential areas—like the assumption that the more distance between data centers, the better. But is there a point where more distance between data centers has diminishing risk mitigation returns? Enter the Goldilocks zone for disaster recovery, in which the distance between data centers is not too close, not too far, but just right.

Government departments work hard to meet required security framework controls for cloud services, and obtaining an Authority to Operate (ATO) can sometimes take up to 18 months. To assist with this process, AWS developed the open-source AWS Secure Environment Accelerator (ASEA), a tool designed to help deploy and operate secure multi-account AWS environments. This post describes how government departments can more simply deploy a web application consisting of a single-page application (SPA), backend API, and database within ASEA.

This post aims to provide a summary of all the currently disclosed Apache Log4j issues as well as important resources that Amazon Web Services (AWS) has released to help our customers and partners limit any risks posed by these issues.

State and local government (SLG) organizations need to reflect and refocus on cyber hygiene and continuous improvement of their security posture. Here are some best practices for SLG chief information security officers (CISOs) and IT professionals to consider in their cloud journey.