Tag: security

Serverless applications are typically discreet pieces of code that customers can use to manage security-related processes or stitch together multiple AWS services to solve a larger problem. They allow customers to build and run applications and services without dealing with infrastructure management tasks such as server or cluster provisioning, patching, operating system maintenance, and capacity provisioning. In this blog, I explain the serverless computing model, the Serverless Application Repository (SAR), solution constructs and implementations, why they matter to our government customers, and how they can use them to solve common problems.

Governments at all levels rapidly addressed the rising challenges of the COVID-19 pandemic. Canadian governments  met citizens’ needs quickly by building secure, compliant solutions on AWS to deliver critical information and services. Working with partners and AWS, Canadian governments and agencies released multiple solutions for providing a modern, digital-first experience for all to interact with the government and receive the information and services they need.

We’re in the midst of the information age and the Internet of Things (IoT) is at the center. What is IoT? It describes the billions of devices around the world that are connected to the internet, devices that can capture and analyze data and then perform an action based on that analysis. Whether it is an emerging IoT device, an innovative solution pivot, or a tried-and-true IoT application, a few things remain constant: we can look to leading examples from smart cities and healthcare to understand current and future uses and securely deploying and managing devices is an absolute must.

Government agencies and public sector organizations need rapidly deployable and dependable security solutions to support their missions. In response to this need, AWS launched the Security Solutions for Government Workloads initiative under the Authority to Operate (ATO) on AWS Program. This initiative works with AWS Public Sector Partners, members of the AWS Partner Network (APN), to develop security solutions designed to meet the unique security and compliance requirements of public sector workloads.

You’ve made the decision to migrate to the cloud and are ready to initiate the adoption process, but where do you begin? What foundational elements are necessary to ensure your cloud adoption is successful and sustainable? These are important questions to consider as state and local governments are increasingly turning to the cloud amid tighter IT budgets and shrinking revenues. However, cloud adoption is more than simply shifting from one technology to another. It involves transforming an entire business into a more agile, responsive, and innovative organization. There are many physical, environmental, and human elements that need to be considered and aligned to pave the way for real innovation. Take these steps to start building the foundation needed for successful and transformational cloud adoption.

As government agencies and public sector organizations modernize their IT and migrate to the AWS Cloud, the ability to gain a full, clear view of the security of their environments is a primary challenge they experience. This lack of visibility leads to blind spots and gaps in their security posture, leaving opportunity for security issues to arise. As a result, AWS developed a new open source Self-Service Security Assessment (with ransomware analysis modules) tool that provides customers with a point-in-time assessment to quickly gain valuable insights into the security posture of their AWS account.

The rapid acceleration of digital transformation has raised expectations for efficient and effective engagement with service providers. Many expect the same engagement with government agencies as they do from consumer services such as video-on-demand, ecommerce, and online food delivery. In Australia, the government is prioritising delivering services through technology in a fast and secure way. The CSCP was closed in March 2020 and the ISM was updated to remove the requirement to select services from the Certified Cloud Services List (CCSL). However, the discontinuation of the CSCP does not alter Amazon Web Services (AWS) commitment to help Australian Government agencies innovate rapidly and securely.

Government agencies have accelerated their transition to the cloud over the last few years, and COVID-19 has accelerated the urgency and pace of that move. A benefit of moving to the cloud is increased security. But to realize this, new infrastructure must be implemented and managed correctly, using best practices and the right technologies. Working with our partners, AWS has helped dozens of solutions accelerate their FedRAMP authorizations. There are more than 100 FedRAMP-authorized solutions running on AWS.

Later this year, the Cybersecurity Maturity Model Certification (CMMC) accreditation framework will take effect, impacting U.S. DoD contractors, supply chain, solution providers, and systems integrators. The DoD estimates that more than 300,000 organizations will require certification. In addition, other U.S. federal agencies and international organizations may adopt a similar framework to protect their intellectual property (IP). No matter the size of your organization, cloud-based services can help you meet the requirements of CMMC.

K12 educational organizations are modernizing their institutions by providing secure anywhere, anytime access to learning for students. Whether a district or school is a cloud veteran or forging new ground, the cloud is helping break down barriers to opportunity, like the ability to access applications through any device. By using the cloud, many K12 institutions—including schools, districts, educational service agencies, and state education agencies—are having breakthroughs in educational models and student engagement.