Blog, Regulations and Security - Public Administration Today

Empowering the public sector with secure, governed generative AI experimentation

AWS Public Sector Blog

NOVEMBER 20, 2024

Here are some key considerations public sector organizations typically face when using generative AI systems: Data privacy and security – Public sector organizations often handle sensitive citizen and student data. Protecting the privacy and security of this information when using generative AI can be a significant challenge.

Public Sector

Public Sector Security Government Accountability

Continuous monitoring and governance: AWS best practices for keeping your data secure during the holidays

AWS Public Sector Blog

DECEMBER 18, 2024

Many organizations use Amazon Web Services (AWS) to enhance their security posture and improve resilience. In this post, we discuss the AWS best practices for securing your data during the holiday season. After the holiday period, thoroughly review your processes for security monitoring and threat hunting.

Security

Security Government Implementation Communications

Hosting regulated U.S. State and Local Government Workloads in AWS

AWS Public Sector Blog

APRIL 1, 2025

State and Local Government (SLG) organizations often have requirements to host regulated workloads with distinct compliance requirements. SLG regulated workloads can be hosted in the AWS U.S. SLG agencies such as public safety, health and human services, and revenue agencies can realize success running regulated workloads in AWS U.S.

Regulations

Regulations Local Government Government Accountability

Securely onboarding countries to the AWS Cloud

AWS Public Sector Blog

MARCH 6, 2025

In an increasingly digital world, governments and public sector entities are seeking secure and efficient ways to use cloud technologies. In this post, I share how we at AWS are collaborating with national cyber regulators and other public sector entities to enable secure adoption of the AWS Cloud across countries public sectors.

Security

Security Public Sector Regulations Implementation

New survey: Public sector poised for generative AI revolution

AWS Public Sector Blog

NOVEMBER 19, 2024

Public sector organizations can also rest assured that AWS has extensive experience serving government and highly-regulated industries. You can meet your security and compliance requirements with AWS generative AI offerings and use our guide, Responsible Use of Machine Learning , to set up governance frameworks that make sense.

Public Sector

Public Sector Public Service Education Regulations

Building an AI coding assistant on AWS: A guide for federal agencies

AWS Public Sector Blog

MARCH 31, 2025

If youre working in highly regulated industries like the federal government or national security, you face unique challengesfrom managing complex legacy systems with accumulated technical debt to keeping pace with rapidly evolving technologies. Customers can switch seamlessly between self-hosted LLMs and externally hosted models.

Security

Security Development Management Public Sector

European Health Data Space will enable health innovation through secure data sharing

AWS Public Sector Blog

MAY 28, 2024

In April 2024, the European Parliament adopted the proposed EHDS Regulation. As the world’s most comprehensive and broadly adopted cloud provider, we recognize our role and responsibility in supporting customers to use health data securely and responsibly. At AWS, security will always be our top priority.

Security

Security Regulations Legislation Implementation

US government agencies can communicate, collaborate securely with AWS Wickr

AWS Public Sector Blog

JANUARY 25, 2024

This blog post will explain why consumer messaging apps are a bad choice and why Amazon Web Services (AWS) Wickr is an appropriate solution for US government customers. The problem is that consumer apps are designed for massive scale and extensibility, not necessarily for security.

Government Agency

Government Agency Communications Security Government

5 ways AWS empowers GovTech innovation in 2025

AWS Public Sector Blog

APRIL 15, 2025

But they also navigate a unique set of industry challenges, from cost constraints and regulatory hurdles to the need for scalable, secure innovation. In this blog post, we discuss five key ways AWS supports GovTechs in their mission to serve government agencies and citizens.

Public Safety

Public Safety Public Sector Government Agency Constituents

Securing and automating compliance in the public sector with AWS

AWS Public Sector Blog

DECEMBER 14, 2023

Compliance is essential, but ensuring compliance in the cloud with various regulations and standards can be challenging, especially for public sector organizations. This post explains how you can use AWS tools and services to secure and automate compliance in your environment. AWS provides you with the necessary tools to achieve this.

Public Sector

Public Sector Security Accountability Management

Aligning the Landing Zone Accelerator on AWS with UK National Cyber Security Centre guidance

AWS Public Sector Blog

DECEMBER 11, 2023

Landing Zone Accelerator on AWS (LZA) is a solution to automate the deployment of a secure cloud foundation on Amazon Web Services (AWS). With this solution, customers with highly-regulated workloads and complex compliance requirements can better manage and govern their multi-account environment.

Security

Security Accountability Public Sector Implementation

Migrate and modernize public sector applications using containers and serverless

AWS Public Sector Blog

OCTOBER 3, 2023

Many public sector customers are interested in building secure, cost-effective, reliable, and highly performant applications. Building modern applications in AWS helps customers with increased innovation, speed, reliability, scalability, and security while lowering total cost of ownership (TCO).

Public Sector

Public Sector Security Management Operations

How the Landing Zone Accelerator on AWS supports NCSC cloud security guidance

AWS Public Sector Blog

DECEMBER 11, 2023

Amazon Web Services (AWS) has collaborated with the UK National Cyber Security Centre (NCSC) to tailor advice on how UK public sector customers can use the Landing Zone Accelerator on AWS (LZA) to help meet the NCSC’s guidance on “ using cloud services securely.”

Security

Security Accountability Public Sector Implementation

AWS joins global thought leaders at 60th Munich Security Conference

AWS Public Sector Blog

FEBRUARY 15, 2024

Amazon Web Services (AWS) is proud to join senior decision-makers and thought leaders from around the world at the 60th edition of the Munich Security Conference (MSC) from February 16-18. MSC is a leading global forum for discussing the most pressing international security challenges.

Security

Security Public Sector Government Regulations

Build secure and scalable data platforms for the European Health Data Space (EHDS) with AWS

AWS Public Sector Blog

OCTOBER 11, 2024

This post explains how healthcare organizations and partners can use Amazon Web Services (AWS) to build secure and scalable infrastructure for secondary usage of health data in alignment with the European Health Data Space (EHDS). This is the first of two posts describing an AWS reference architecture for EHDS.

Security

Security Implementation Regulations Leadership

Enhancing Security with CISA’s ScubaGear Baselines for M365

Microsoft Public Sector

OCTOBER 23, 2024

In today's digital age, securing an organization's information is more critical than ever. The Cybersecurity and Infrastructure Security Agency (CISA) stood up a program called Secure Cloud Business Applications (SCuBA). Baseline implementation guides can be found at Secure Cloud Business Applications (SCuBA) Project | CISA.

Security

Security Public Sector Regulations Implementation

Working backwards from generative AI business value in the public sector

AWS Public Sector Blog

NOVEMBER 21, 2024

In the following sections, we provide a deeper look into each of these areas through the lens of AnyOrganization a public sector organization in the financial regulation space. Transforming these domains and enabling them to use AI depends on your foundational capabilities in business, people, governance, platform, security, and operations.

Public Sector

Public Sector Development Operations Accountability

Whole-of-state cybersecurity: Three procurement considerations for the public sector

AWS Public Sector Blog

APRIL 13, 2023

State and local government (SLG) agencies now have procurement questions to ask and decisions to make to maximize governance and security, simplify vendor management, and accelerate the overall process within a heavily regulated procurement environment.

Public Sector

Public Sector Local Government Security Education

Announcing the Landing Zone Accelerator for Education to support customers in education and research

AWS Public Sector Blog

JULY 10, 2023

The LZA is built to support customers with regulated workloads and compliance requirements. Supporting security standards alignment with global compliance frameworks The AWS Compliance Program helps customers understand the robust controls in place at AWS to maintain security and compliance in the cloud.

Education

Education Public Sector Accountability Security

Supporting security assessors in the Canadian public sector with AWS and Deloitte

AWS Public Sector Blog

NOVEMBER 8, 2023

Lire cet article en Français Moving Government of Canada (GC) workloads into production in the AWS Canadian Regions requires putting these workloads through the Security Assessment & Authorization (SA&A) process. In this blog post, learn how Amazon Web Services (AWS) helps customers with this along three dimensions.

Public Sector

Public Sector Security Accountability Management

How Digithurst and Telepaxx built a secure and scalable radiology solution chain using AWS

AWS Public Sector Blog

JANUARY 19, 2023

Radiology centers face many challenges, like shortages in personnel and budget; interoperability issues between different IT systems and long-term storage of images; and strict laws and regulations regarding IT security and data protection. Digithurst and Telepaxx’s cloud transition has also an immediate effect on patients’ healthcare.

Security

Security Public Sector Regulations Development

Microsoft Copilot for Security and NIST 800-171: Access Control

Microsoft Public Sector

MARCH 5, 2024

Microsoft Copilot for Security and NIST 800-171: Access Control Microsoft Copilot for Security in Microsoft’s US Gov cloud offerings (Microsoft 365 GCC/GCC High and Azure Government) is currently unavailable and does not have an ETA for availability. Future updates will be published to the public roadmap here.

Security

Security Accountability Management Translation

Streamlining digital transformation in German healthcare with AWS

AWS Public Sector Blog

JULY 25, 2024

Ensuring the availability and security of critical applications is paramount. Their existing partner provided infrastructure services but lacked expertise in healthcare application management, which is crucial for digitization efforts in their regulated segment. Max Grundig Klinik aimed to renew their entire IT landscape.

Regulations

Regulations Security Management Operations

Building compliant healthcare solutions using Landing Zone Accelerator

AWS Public Sector Blog

JUNE 12, 2024

However, with these benefits come challenges to meet regulatory and compliance requirements surrounding data privacy and security. In addition, there are a multitude of regulations and compliance requirements to meet, adding another layer of complexity to the already intricate web of data privacy controls.

Accountability

Accountability Security Implementation Regulations

Get no-cost, in-person training and hands-on help at the AWS Federal Learning Days

AWS Public Sector Blog

AUGUST 2, 2022

From creating a security compliant cloud environment, to using artificial intelligence (AI) and machine learning (ML) for fraud detection, to getting ready for the quantum era—you can pick and choose sessions to attend based on your current cloud needs. Thursday, September 15: AWS for security, governance, and compliance.

Public Sector

Public Sector Government Security Education

How the US DOJ Tax Division built a remote telework application in six weeks with AWS

AWS Public Sector Blog

AUGUST 26, 2022

Managers needed the ability to review and approve telework requests, and executives needed to be able to gain insights on the Division’s telework arrangements—all while keeping sensitive information compliant and secure. Helping government employees choose where they work, securely. government security and compliance requirements.

Public Sector

Public Sector Laws Government Government Employee

Deploying AWS Modular Data Center: From ordering to delivery and installation

AWS Public Sector Blog

NOVEMBER 20, 2024

This self-contained solution uses two 20-foot shipping containers to create an ICD-705 compliant shielded enclosure, equipped as a data center with built-in power distribution, redundant cooling (N+1), security, monitoring, fire suppression, and other essential infrastructure components.

Coordinator

Coordinator Security Accountability Transportation

How credit unions can evaluate their FFIEC, NCUA cyber compliance using AWS

AWS Public Sector Blog

JANUARY 18, 2024

Note: Security and compliance is a shared responsibility between AWS and the customer. The customer assumes responsibility and management of the guest operating system (including updates and security patches), other associated application software, as well as the configuration of any AWS security products.

Security

Security Public Sector Management Nonprofit

Resiliency imperatives for CIOs with sensitive and highly-available cloud environments in AWS GovCloud (US)

AWS Public Sector Blog

MAY 15, 2024

They work to transform citizen experiences, save taxpayers money, support sustainable growth, expand market presence, modernize legacy systems, increase security, drive efficiencies, strengthen brand equity, and reduce environmental impact, with AWS GovCloud (US) serving as a foundation for strategic technology advancement.

Regulations

Regulations Public Sector Budgeting Government Agency

Approaches for creating FedRAMP high/moderate impact workloads solutions OCONUS using AWS

AWS Public Sector Blog

JUNE 22, 2024

Cloud computing is pivotal to allow the federal government to gain operational efficiencies and drive innovation securely and cost efficiently. To enhance the customer experience and ensure secure access to these workloads, the overseas postings are now exploring hybrid distributed solutions that run closer to the edge.

Security

Security Operations Accountability Implementation

How healthcare organizations can fulfill compliance standards with AWS

AWS Public Sector Blog

FEBRUARY 14, 2024

To modernize their healthcare infrastructure and improve data security, Bavarian hospital Fachklinikum Mainschleife , in collaboration with Amazon Web Services (AWS) Partner Kite Consult and consulting firm Oberender AG , undertook a massive initiative: the migration of their entire IT infrastructure to AWS.

Security

Security Regulations Management Legislation

Announcing new cloud-based solutions for credit unions and nonprofit research organizations

AWS Public Sector Blog

MARCH 9, 2023

However, it’s vital to store this data securely and share it responsibly. These solutions can also help organizations share data while complying with regulations and security best practices. Credit unions can also benefit from the cost-savings, security, and availability benefits of deploying cloud-based backup solutions on AWS.

Nonprofit

Nonprofit Public Sector Implementation Fundraising

Addressing data sovereignty with edge AI on AWS

AWS Public Sector Blog

JULY 2, 2024

Data sovereignty refers to a concept where individuals, organizations, or governments have control over their own data and infrastructure, ensuring independence, privacy, and security. This can be helpful for complying with data residency regulations.

Regulations

Regulations Security Laws Operations

Connectivity patterns between AWS GovCloud (US) and AWS commercial partition

AWS Public Sector Blog

APRIL 23, 2024

In some cases, they host workloads in both partitions to be cost-optimized while meeting security demands. Architectural diagram described in this blog of TLS encryption at the application layer between partition. AWS Site-to-Site VPN is a managed service that uses Internet Protocol security (IPSec) to create encrypted tunnels.

Communications

Communications Implementation Regulations Security

Karsun Solutions builds modernization platform using Amazon Bedrock

AWS Public Sector Blog

MARCH 19, 2024

Summary Highly regulated enterprises and government agencies still maintain critical applications operating on legacy mainframe systems. Modernizing critical applications includes challenges of undocumented and complex business rules, technical obstacles, regulatory compliance, enterprise-grade security, and privacy.

Operations

Operations Security Government Agency Development

4 best practices to enhance research IT operations with AWS

AWS Public Sector Blog

MARCH 11, 2025

During the panel, Tsui and Shen shared how their institutions use AWS to augment and enhance their research operations with more scalability, security, and collaboration alongside their on-premises infrastructure. Secure global collaboration: The cloud helps research teams share data and discoveries securely and compliantly with ease.

Operations

Operations Budgeting Security Accountability

Support FedRAMP and CMMC compliance with the Landing Zone Accelerator on AWS

AWS Public Sector Blog

SEPTEMBER 12, 2023

Some US federal agencies and those who collaborate with them must support an automated, secure, and scalable multi-account cloud environment that meets Federal Risk and Authorization Management Program (FedRAMP) and Cybersecurity Maturity Model Certification (CMMC) standards. Customers that need to align with CMMC 2.0 For example, CMMC 2.0

Public Sector

Public Sector Accountability Security Implementation

How one small public library IT team saw big benefits from migrating to AWS

AWS Public Sector Blog

NOVEMBER 16, 2022

Read related stories on the AWS Public Sector Blog: How to migrate on-premises workloads with AWS Application Migration Service. Use Migration Evaluator in protected or regulated environments by anonymizing sensitive network data. How Rockdale County improved operations and security with the cloud.

Public Sector

Public Sector Housing Local Government Management

How to use AWS Wickr to enable healthcare workers to interact with generative AI

AWS Public Sector Blog

OCTOBER 4, 2024

Patient data is sensitive and in many jurisdictions processing, access, and storage of patient data is regulated by government entities. In the US, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulates the processing, maintenance, and storage of protected health information.

Communications

Communications Security Regulations Accountability

Civix simplifies online campaign finance reporting with AWS serverless technology

AWS Public Sector Blog

JANUARY 10, 2023

Civix built the Ethics API in the AWS GovCloud (US) Region, which is designed to host sensitive data and regulated workloads and address the most stringent US government security and compliance requirements. The Amazon S3 buckets provide isolated data storage for each state with built-in encryption and other security features.

Campaign

Campaign Public Sector Laws Constituents

Modern data strategy for government tax and labor systems

AWS Public Sector Blog

MARCH 26, 2024

Customers also say that these challenges are often compounded by inflexible legacy systems, internal skill gaps, and anxiety with ensuring the security of sensitive data. In this blog post, we will cover why a modern data strategy is important, the key components of a modern data strategy, and practical next steps.

Government

Government Public Sector Regulations Security

Addressing federal record retention in mobile device messaging

AWS Public Sector Blog

OCTOBER 20, 2022

The majority are subject to Federal Records Act (FRA) and National Archives and Records Administration (NARA) regulations that require them to collect, store, and manage federal records that are created, received, and used in daily operations. Data security and retention. Federated secure messaging and storage.

Public Sector

Public Sector Communications Laws Security

Open for registration: Cloud Audit Academy for Federal and DoD Workloads in AWS

AWS Public Sector Blog

JANUARY 20, 2023

This is a two-day accelerated training course to educate customers on how to leverage AWS services to assist with US Federal and Department of Defense (DoD) security and compliance requirements. This training course also qualifies for 12 hours of continuing professional education (CPE).

Public Sector

Public Sector Security Regulations Education

Using Protective DNS services with AWS workloads

AWS Public Sector Blog

APRIL 22, 2024

Protective DNS services, commonly known as PDNS, are a go-to solution if you’re aiming to bolster the security of your infrastructure from the ground up. This proactive strategy not only secures networks at a foundational level, but also hinders potential attacks from gaining traction in the first place.

Public Sector

Public Sector Security Regulations Implementation

Empowering the public sector with secure, governed generative AI experimentation

Continuous monitoring and governance: AWS best practices for keeping your data secure during the holidays

Trending Sources

Hosting regulated U.S. State and Local Government Workloads in AWS

Securely onboarding countries to the AWS Cloud

New survey: Public sector poised for generative AI revolution

Building an AI coding assistant on AWS: A guide for federal agencies

European Health Data Space will enable health innovation through secure data sharing

US government agencies can communicate, collaborate securely with AWS Wickr

5 ways AWS empowers GovTech innovation in 2025

Securing and automating compliance in the public sector with AWS

Aligning the Landing Zone Accelerator on AWS with UK National Cyber Security Centre guidance

Migrate and modernize public sector applications using containers and serverless

How the Landing Zone Accelerator on AWS supports NCSC cloud security guidance

AWS joins global thought leaders at 60th Munich Security Conference

Build secure and scalable data platforms for the European Health Data Space (EHDS) with AWS

Enhancing Security with CISA’s ScubaGear Baselines for M365

Working backwards from generative AI business value in the public sector

Whole-of-state cybersecurity: Three procurement considerations for the public sector

Announcing the Landing Zone Accelerator for Education to support customers in education and research

Supporting security assessors in the Canadian public sector with AWS and Deloitte

How Digithurst and Telepaxx built a secure and scalable radiology solution chain using AWS

Microsoft Copilot for Security and NIST 800-171: Access Control

Streamlining digital transformation in German healthcare with AWS

Building compliant healthcare solutions using Landing Zone Accelerator

Get no-cost, in-person training and hands-on help at the AWS Federal Learning Days

How the US DOJ Tax Division built a remote telework application in six weeks with AWS

Deploying AWS Modular Data Center: From ordering to delivery and installation

How credit unions can evaluate their FFIEC, NCUA cyber compliance using AWS

Resiliency imperatives for CIOs with sensitive and highly-available cloud environments in AWS GovCloud (US)

Approaches for creating FedRAMP high/moderate impact workloads solutions OCONUS using AWS

How healthcare organizations can fulfill compliance standards with AWS

Announcing new cloud-based solutions for credit unions and nonprofit research organizations

Addressing data sovereignty with edge AI on AWS

Connectivity patterns between AWS GovCloud (US) and AWS commercial partition

Karsun Solutions builds modernization platform using Amazon Bedrock

4 best practices to enhance research IT operations with AWS

Support FedRAMP and CMMC compliance with the Landing Zone Accelerator on AWS

How one small public library IT team saw big benefits from migrating to AWS

How to use AWS Wickr to enable healthcare workers to interact with generative AI

Civix simplifies online campaign finance reporting with AWS serverless technology

Modern data strategy for government tax and labor systems

Addressing federal record retention in mobile device messaging

Open for registration: Cloud Audit Academy for Federal and DoD Workloads in AWS

Using Protective DNS services with AWS workloads

Stay Connected