AWS Public Sector Blog
Tag: fedramp
Mission Critical Cloud: What you missed at the AWS Public Sector Summit Online 2020 keynote
This morning, vice president of AWS worldwide public sector Teresa Carlson kicked off the AWS Public Sector Summit Online. Teresa reflected on the challenging times during these past few months, shared key trends and lessons learned and spoke about AWS’s commitment to helping people around the world continue to deliver on their missions. In her keynote address, Teresa highlighted AWS customers’ impressive global efforts and how AWS is helping support those customers’ missions. She also shared the latest news and announcements, resources, and more. Here’s what you missed.
Enabling FIPS mode in Amazon Linux 2
Federal Information Processing Standard (FIPS) 140-2 specifies the security requirements for cryptographic modules that protect sensitive information. It is the current United States and Canadian government standard, and is applicable to systems that are required to be compliant with Federal Information Security Management Act (FISMA) or Federal Risk and Authorization Management Program (FedRAMP). In this blog, we demonstrate how to enable FIPS mode in Amazon Linux 2 and verify that unauthorized cryptographic functions are not being used in OpenSSL or the OpenSSH server.
Automating creation of a FedRAMP Integrated Inventory Workbook
Did you know AWS can help deliver an automated solution for creating the FedRAMP Integrated Inventory Workbook? This workbook needs to be updated and submitted to the FedRAMP Project Management Office (PMO) monthly for continuous monitoring. Automating this workbook saves manual work hours. Any customer going through the FedRAMP authorization process can leverage this workbook. Understand how to gather an inventory of AWS resources from AWS Config data to create the FedRAMP Integrated Inventory Workbook.
Achieving cloud compliance and security with AWS GovCloud (US): Join us for AWS Compliance Week
From November 4-8, Amazon Web Services (AWS) will host its first annual “AWS Compliance Week: Achieving Cloud Compliance and Security in the AWS Cloud” to help customers navigate and accelerate their cloud adoption plans for regulated workloads and sensitive data. The five-part, week-long webinar series will highlight how AWS GovCloud (US) Regions are purpose-built to help customers realize cloud benefits when working with Controlled Unclassified Information (CUI), defense data, export-controlled data, and criminal justice information (CJI).
Smartsheet Gov achieves FedRAMP P-ATO, taps AWS GovCloud (US) and ATO on AWS to accelerate journey
Smartsheet, a cloud-based platform for work execution, recently announced Smartsheet Gov achieved a Federal Risk and Authorization Management Program (FedRAMP) Provisional Authority to Operate (P-ATO). Smartsheet Gov is a secure solution that enables federal agencies to organize and scale processes, streamline workflows, and automate repetitive yet critical tasks, built on Amazon Web Services (AWS) GovCloud (US). The Joint Authorization Board (JAB)-issued authorization enables U.S. federal government customers to increase their use of the Smartsheet Gov platform to help them modernize their IT missions. “By building on AWS GovCloud, Smartsheet and their government customers may host sensitive data and regulated workloads, while meeting stringent US government security and compliance requirements,” said Dave Levy, Vice President of U.S. Federal Government at AWS.
Announcing ATO on AWS
We announced the Authority to Operate (ATO) on AWS program, which provides resources to Independent Software Vendors (ISVs) who aspire to achieve a compliance authorization, such as FedRAMP, Defense Federal Acquisition Regulation Supplement (DFARS), Payment Card Industry (PCI), Criminal Justice Information Services (CJIS), and many other compliance programs.
Second AWS GovCloud (US) Region in the United States is Live
The new AWS GovCloud (US-East) Region is now available. The AWS GovCloud (US-East) Region joins GovCloud (US-West) as the second AWS GovCloud Region in the US, and the 19th AWS Region worldwide. The second AWS GovCloud (US) Region gives US government customers a consistent compliance framework across their IT environment including FedRAMP, DoD IL 5, Criminal Justice Information Services (CJIS), and International Traffic and Arms Regulations (ITAR).
Geospatial Platform: Shared and Trusted Geospatial Data for Government Agencies
In May 2015, the CIO’s office at the U.S. Department of Interior embarked on a mission to provide a secure, scalable platform for the 32 agencies that make up the Federal Geographic Data Committee. The platform provides a managed services environment for agencies to host and share geospatial data, geospatial services and geospatial applications for the public, and with other government agencies and their partners. DOI names GTRI, now Zivaro, the mission partner. GTRI, an AWS Advanced Technology Partner, specializes in the selection, implementation, deployment, and maintenance of AWS environments.
Defense Agencies Can Access AWS Secret Region for IL6 Workloads
In November, with the launch of the AWS Secret Region, we achieved a Provisional Authorization (PA) for Impact Level 6 (IL6) workloads from the U.S. Defense Information Systems Agency (DISA), the IT combat support organization of the U.S. Department of Defense (DoD). The PA was recently updated to add 11 new AWS services. A service catalog for the Region is available through your AWS Account Executive.
Cloud Security Built for Government Missions
Cloud technology continues to be a major catalyst in how the federal government can achieve operational efficiencies and innovate on demand to advance their mission. Many government agencies, including the Department of Defense (DoD) and other agencies with mission-critical workloads, are using AWS’s utility-based cloud offerings to process, store, and transmit federal government data. As evidenced by the full range of our Authorizations-To-Operate, third-party attestations, and certifications, the AWS Cloud provides government customers with the only one-stop shop to handle Public, For Official Use Only (FOUO), Sensitive, Secret, and Top Secret workloads.