AWS Public Sector Blog

Tag: AWS IAM Identity Center

AWS branded background design with text overlay that says "¬¬¬Extracting insights from PubMed articles using Amazon Q Business"

Extracting insights from PubMed articles using Amazon Q Business

PubMed Central (PMC) is a leading resource for biomedical literature, offering a vast repository of full-text biomedical and life sciences journal articles. While PMC offers immense potential to accelerate scientific progress, inform evidence-based practice, and drive innovation in the biomedical and life sciences fields, the sheer volume of data presents a significant challenge. This is where Amazon Q Business comes in. It’s a powerful service designed to streamline the process of analyzing vast amounts of scientific literature and provide valuable insights efficiently. Read this post to learn more.

AWS branded background design with text overlay that says "Unlocking healthcare data with Amazon Q Business "

Unlocking healthcare data with Amazon Q Business

Healthcare organizations face a significant challenge in making sense of the vast amounts of unstructured medical data trapped in patient records, lab results, and clinical guidelines. Approximately 97 percent of the 50 petabytes (PB) of healthcare data generated annually goes unused. This untapped resource could hold the key to improving patient care and saving valuable clinician time. Read this post learn how we built an innovative solution on Amazon Web Services (AWS) generative artificial intelligence (AI) capabilities that lets clinicians unlock this data treasure trove.

AWS branded background design with text overlay that says "AWS Verified Access in a TIC 3.0 architecture"

AWS Verified Access in a TIC 3.0 architecture

Federal agencies can use Amazon Web Services (AWS) to meet Trusted Internet Connections (TIC) 3.0 requirements. To facilitate this, AWS has published detailed architectural overlays that demonstrate how to effectively implement TIC 3.0 guidelines within AWS deployments. AWS Verified Access (AVA) is a cloud-based service that enables secure access to applications without requiring the use of a virtual private network (VPN). It evaluates each application request and gives users access to each application only when they meet the specified security requirements. AVA supports TIC 3.0 requirements in the areas of configuration management, centralized log management, strong authentication features, resilience, and policy enforcement. Read this post to learn more.

AWS branded background design with text overlay that says "Migrating to a multi-account strategy for public sector customers"

Migrating to a multi-account strategy for public sector customers

A multi-account strategy is important for Amazon Web Services (AWS) public sector customers because it is the foundation of cloud governance and compliance. Public sector customers using a shared account model can improve security and operational efficiency by adopting a multi-account strategy. In this post, we explore methods for existing AWS public sector customers to prepare for and migrate to a multi-account environment.

AWS branded background design with text overlay that says "Building your first generative AI conversational experience on AWS"

Building your first generative AI conversational experience on AWS

Amazon Web Services (AWS) offers a variety of options for building chat-based assistants with generative artificial intelligence (AI) capabilities. The goal of this post is to present in simple words some of these options and what to keep in mind to decide which to use and how to get started.

AWS branded background design with text overlay that says "Empowering the public sector with secure, governed generative AI experimentation"

Empowering the public sector with secure, governed generative AI experimentation

The Generative AI Sandbox on AWS, powered by Amazon Bedrock Studio, provides a secure, governed, and isolated environment for organizations to explore the power of large language models (LLMs) and other generative artificial intelligence capabilities. Bedrock Studio users can test different LLMs side by side to understand which ones best suit their specific use cases: from drafting policy documents to analyzing public feedback, or creating educational content.

AWS branded background design with text overlay that says "University of British Columbia Cloud Innovation Centre: Governing an innovation hub using AWS management services"

University of British Columbia Cloud Innovation Centre: Governing an innovation hub using AWS management services

In January 2020, Amazon Web Services (AWS) inaugurated a Cloud Innovation Centre (CIC) at the University of British Columbia (UBC). The CIC uses emerging technologies to solve real-world problems and has produced more than 50 prototypes in sectors like healthcare, education, and research. The Centre’s work has involved 300-plus AWS accounts across various groups, including external collaborators, UBC staff, students, and researchers. This post discusses the management of AWS in higher education institutions, emphasizing governance to securely foster innovation without compromising security and detailing policies and responsibilities for managing AWS accounts across projects and research.

AWS branded background design with text overlay that says "Singapore’s EVe harnesses the power of data with help from NTT DATA, AWS"

Singapore’s EVe harnesses the power of data with help from NTT DATA, AWS

In alignment with Singapore’s ambitious sustainability objectives, the Land Transport Authority (LTA) of Singapore is intensifying its efforts to spur the adoption of electric vehicles. This contributes to the nation’s goal of achieving 100 percent cleaner energy vehicles by 2040, and the effort leverages Amazon Web Services (AWS). LTA has set up EV-Electric Charging Pte Ltd (EVe) to manage the deployment of up to 12,000 electric vehicle (EV) charging points distributed across 2,000 Housing Development Board (HDB) carparks.

AWS branded background design with text overlay that says "Web filtering for education using AWS Network Firewall"

Web filtering for education using AWS Network Firewall

Managing access to websites and safeguarding users from harmful content is a critical component of a layered cybersecurity approach, especially in educational settings. Schools and institutions of higher learning have a responsibility to provide a secure online experience for their students and staff. Traditionally, this has been accomplished through on-site web filtering appliances. Amazon Web Services ( AWS) Network Firewall allows customers to filter their outbound web traffic from on-premises environments based on fully qualified domain names (FQDN) or Server Name Indication (SNI) for encrypted traffic. This post will use AWS Client VPN to demonstrate routing and filtering traffic from external resources through Network Firewall.

AWS branded background design with text overlay that says "Building compliant healthcare solutions using Landing Zone Accelerator"

Building compliant healthcare solutions using Landing Zone Accelerator

In this post, we explore the complexities of data privacy and controls on Amazon Web Services (AWS), examine how creating a landing zone within which to contain such data is important, and highlight the differences between creating a landing zone from scratch compared with using the AWS Landing Zone Accelerator (LZA) for Healthcare. To aid explanation, we use a simple healthcare workload as an example. We also explain how LZA for Healthcare codifies HIPAA controls and AWS Security Best Practices to accelerate the creation of an environment to run protective health information workloads in AWS.