Tag: security

Accreditation programs and the organizational models that support them are priority considerations for public sector managers who are modernizing their IT. But managers often consider risk and compliance issues too late in the planning stage. Here are some key principles that can prevent accreditation-related issues from becoming a roadblock to cloud adoption.

Recent events, from public sector cyberattacks and severe weather events to the ongoing global COVID-19 pandemic, have revealed that many educational institutions, as well as regional and local governments, are not fully prepared to respond to these incidents. At the same time, large-scale disruptive events illustrate how important it is for public sector organizations to respond rapidly to keep essential services running as well as quickly pivot to offer new services. In an IDC survey of 2,000 U.S. residents in September 2020, 31% said they would like to continue virtual government services as a replacement for in-person interactions, while another IDC survey of U.S. teachers revealed that 38% expect a growth in hybrid or remote learning to be a lasting change.

The AWS Compliant Framework is an automated solution designed to help customers reduce the time to setup an environment for running secure and scalable workloads while implementing an initial security baseline that meets US federal government standards. The solution was designed to address the requirements for deploying DoD CMMC and DoD Cloud Computing Security Requirements Guide compliant environments.

Organizations across the public sector are leveraging the cloud to drive their missions forward with cutting-edge innovation. At the Amazon Web Services (AWS) Public Sector Summit Online, vice president of worldwide public sector and industries Teresa Carlson and vice president of worldwide public sector Max Peterson at AWS shared the latest updates and spoke with leaders who are reinventing what’s possible using the AWS Cloud. Here’s what you missed.

This year, global health and economy challenged government, education, nonprofit, and health organizations to rethink operations. With a focus on their mission, organizations quickly shifted to better and more quickly serve their constituents, students, and customers. Many took advantage of ways to innovate and consider adopting the cloud. AWS looked for ways to help these organizations, educating them on the power of the cloud—no matter where they were on their cloud journey—as well as sharing inspiring stories from their peers. Here’s what we learned.

State and local governments and health and human services (HHS) agencies provide key services to the nation’s most vulnerable and at risk populations such as healthcare, nutrition, economic, and other social support programs. HHS organizations were among the first to feel the impact of COVID-19 and its effects continue to linger and test aging infrastructure and limited technology systems. State and local government agencies made mission critical decisions to address those immediate needs and are preparing for resiliency moving forward. For this, they turned to the cloud. To help organizations discover how the cloud can help, Amazon Web Services (AWS) created the Health and Human Services Cloud Pavilion, an online, interactive learning environment.

If you are a technology professional looking to understand how cloud security adheres to compliance requirements, attend our AWS Compliance Week webinar series on November 2-6. You will learn how to architect compliant, multi-region cloud environments, establish agile governance for regulated workloads, and use new AWS solutions to help accelerate compliance. Hear government and industry perspectives on achieving high compliance from the General Services Administration’s FedRAMP program management office, and customers Maxar, Salesforce, and Coalfire.

According to the 2020 Deloitte-NASCIO Cybersecurity Study for state governments, 54 percent of states are not confident in their ability to protect emerging technology. Traditional cybersecurity approaches can result in singularly focused solutions that don’t provide holistic protection. It can also inhibit an organizations’ ability to monitor and respond to security threats in real time. As more organizations shift to cloud-based workloads, security mechanisms and components need to be developed and integrated using a Security by Design (SbD) approach. Our AWS Partners have developed pre-configured security solutions, which allow customers to deploy applications using SbD strategies and also use AWS security solutions to ensure continuous security alignment. 

A new IDC whitepaper, sponsored by AWS, “How Government Agencies Meet Security and Compliance Requirements in the Cloud” examines why federal agencies are moving more systems and information to the cloud as a launching point for agency-wide IT modernization. The paper shares executive, legislative, and other government-wide initiatives influencing agencies to accelerate their cloud adoption plans, risks IT leaders face by delaying cloud migrations, and how secure, compliant cloud environments help agencies achieve compliance and security for their sensitive workloads.

To help our public sector customers in Sweden accelerate their journey to the cloud, we are launching the AWS ClearStart program. AWS ClearStart helps organizations meet security and regulatory needs through a set of guides, trainings, technology tools, and cloud computing experts to simplify the process of complying with Swedish and EU regulations, including the Public Access to Information and Secrecy Act (OSL) and General Data Protection Regulation (GDPR), as well as with international information security standards, such as ISO/IEC27001.