Category: AWS Organizations

When Department of the Air Force (DAF) software factories scale their cloud operations across mission-critical environments, maintaining consistent resource tagging becomes crucial for security, compliance, and operational effectiveness. For organizations like Kessel Run, a unit that provides capabilities within the DAF Battle Network, ensuring compliance while maintaining rapid deployment capabilities is essential for delivering capabilities to warfighters. In this post, we discuss a solution that enabled Kessel Run to enforce tagging standards at resource creation while supporting their complex deployment patterns.

U.S. State and Local Government (SLG) organizations often have requirements to host regulated workloads with distinct compliance requirements. HAQM Web Services (AWS) provides U.S. SLG customers with an approach to meet compliance needs by using AWS GovCloud (US) regions or AWS U.S. commercial regions. In this post, we will explain how some U.S. SLG regulated workloads can be hosted in the AWS U.S. commercial regions.

In this post, we explore how AWS services, open source software, and bespoke source code can help address resource sharing enhancements requested by public sector customers using AWS Outposts. This solution aims to provide greater flexibility, control, and cost management for organizations leveraging Outposts in multi-account environments, specifically focusing on key AWS resources, including HAQM Elastic Compute Cloud (HAQM EC2), HAQM Elastic Block Store (HAQM EBS), and HAQM Simple Storage Service (HAQM S3) on Outposts.

A multi-account strategy is important for HAQM Web Services (AWS) public sector customers because it is the foundation of cloud governance and compliance. Public sector customers using a shared account model can improve security and operational efficiency by adopting a multi-account strategy. In this post, we explore methods for existing AWS public sector customers to prepare for and migrate to a multi-account environment.

As government organizations transition to HAQM Web Services (AWS), they often seek to maintain operational continuity by using their existing on-premises firewall solutions. Gateway Load Balancer (GWLB) enables seamless integration of these firewall appliances into the AWS architecture, ensuring consistent security policies and minimizing disruptions. This post explores best practices for implementing GWLB to facilitate centralized traffic inspection for both east-west and north-south traffic flows.

In January 2020, HAQM Web Services (AWS) inaugurated a Cloud Innovation Centre (CIC) at the University of British Columbia (UBC). The CIC uses emerging technologies to solve real-world problems and has produced more than 50 prototypes in sectors like healthcare, education, and research. The Centre’s work has involved 300-plus AWS accounts across various groups, including external collaborators, UBC staff, students, and researchers. This post discusses the management of AWS in higher education institutions, emphasizing governance to securely foster innovation without compromising security and detailing policies and responsibilities for managing AWS accounts across projects and research.

Despite a common misconception about government, state agencies regularly innovate on behalf of their constituents. In this post, HAQM Web Services (AWS) experts share examples of innovation from New Mexico and North Carolina. We also provide tips for accelerating procurement and maintaining visibility over rapidly implemented workloads.

Healthcare organizations worldwide are leveraging HAQM Web Services (AWS) and partner solutions to modernize, transform, and innovate their businesses. Ensuring the availability and security of critical applications is paramount. For example, two renowned German medical facilities, Fachklinikum Mainschleife and Max Grundig Klinik, needed to modernize their IT infrastructure to comply with stringent regulatory requirements outlined in the country’s Law for Accelerating the Digitalization of Healthcare (DigiG). Reliable and compliant service offerings from AWS enabled the medical facilities to provide reliable access to essential systems.

In this post, we explore the complexities of data privacy and controls on HAQM Web Services (AWS), examine how creating a landing zone within which to contain such data is important, and highlight the differences between creating a landing zone from scratch compared with using the AWS Landing Zone Accelerator (LZA) for Healthcare. To aid explanation, we use a simple healthcare workload as an example. We also explain how LZA for Healthcare codifies HIPAA controls and AWS Security Best Practices to accelerate the creation of an environment to run protective health information workloads in AWS.

Compliance is essential, but ensuring compliance in the cloud with various regulations and standards can be challenging, especially for public sector organizations. The requirements are highly dynamic, constantly evolving, and they vary across countries. Read this blog post to learn about the HAQM Web Services (AWS) resources that can help customers meet compliance requirements, reduce their time and effort, and focus on core business objectives.