Tag: compliance

National security and defense depend upon close collaboration between international allies. To protect sensitive data and promote robust cybersecurity frameworks, organizations must consider one another’s compliance requirements. One such requirement is the United States International Traffic in Arms Regulations (ITAR), which restricts and controls the export of defense and military-related technologies in order to safeguard US national security. Here, we set out how an innovation called Trusted Secure Enclaves (TSE) on Amazon Web Services (AWS) allows non-US national organizations who want to use the most modern and innovative technology to deliver defense and security missions using the cloud can do this and be compliant.

EDUCAUSE and the Shared Assessments working group collaborated with Internet2 and REN-ISAC, to create the Higher Education Community Vendor Assessment Toolkit (HECVAT). EDUCAUSE is a non-profit association committed to advancing the use of technology and data in higher education. The HECVAT is a third-party, vendor questionnaire framework designed for higher education institutions to evaluate the security and privacy posture of cloud and technology providers. It is intended to centralize vendor security and compliance information for ease of use. Amazon Web Services (AWS) now offers both the HECVAT Lite version and Full version to customers on-demand.

The healthcare industry is undergoing a profound transformation, driven by the adoption of generative artificial intelligence (AI), cloud computing, and connected care devices. This digital revolution promises to improve patient outcomes, reduce costs, and enhance the overall healthcare experience. However, it also introduces new challenges in terms of cybersecurity, privacy, and regulatory compliance. To navigate this complex landscape, healthcare organizations are turning to scalable, affordable, and highly available cloud infrastructures such as Amazon Web Services (AWS) to build resilient, secure, and innovative solutions.

TribalNet is an industry group that connects IT leaders, executives, and technology vendors at Native American tribes and tribal enterprises. Founded in 1999, the organization’s mission is Bringing Technology and Tribes Together. AWS fully supports TribalNet and its mission.

In this post, we explore how generative artificial intelligence (AI), powered by services such as Amazon Bedrock and Amazon SageMaker, can be harnessed to meet the unique challenges of AWS GovCloud (US). We highlight use cases that demonstrate the potential of generative AI to enhance efficiency, automate workflows, and extract insights—all within a secure, compliant framework.

This post discusses how FIA Tech, a leading technology provider for the exchange traded derivatives (ETD) industry, built the Trade Data Network (TDN) on Amazon Web Services (AWS). TDN is an industry initiative that provides a shared ledger of trading information to address the fragmentation and lack of transparency in ETD post-trade processing. The TDN initiative currently includes 17 banks/brokers and 40 investment managers and hedge funds with combined assets under management of more than $34 trillion.

The National Institutes of Health (NIH) has long maintained guidelines governing the responsible management of controlled access human genomic and phenotypic data maintained in NIH-designated data repositories. Recently, the NIH updated these guidelines to align with the NIST SP 800-171 security standard, which defines a comprehensive framework for securing Controlled Unclassified Information (CUI). In this blog post, we will explore the specifics of the updated NIH guidance and outline how Amazon Web Services (AWS) can help customers build a compliant environment to meet these requirements.

As we look ahead to 2025, it’s crucial to maintain vigilance, especially during the holiday season, when cybersecurity risks tend to escalate. Many organizations use Amazon Web Services (AWS) to enhance their security posture and improve resilience. In this post, we discuss the AWS best practices for securing your data during the holiday season.

In this blog post, we’ll delve into Socure’s journey of building a FedRAMP-compliant cloud infrastructure from the ground up that uses a comprehensive suite of AWS services, enhanced by key third-party tools such as Sumo Logic, Istio, Terraform, and Trend Micro, to create a modern, secure, scalable, and compliant cloud infrastructure architecture right from Day 1.

In August 2024, Amazon Web Services (AWS) convened more than 65 Defense Industrial Base (DIB) companies at Amazon’s HQ2 in Arlington, Virginia for the inaugural AWS Defense Industry Forum. The DIB consists of more than 100,000 companies and subcontractors, which support the U.S. Department of Defense (DoD), and AWS joins forces with DIB partners to provide global infrastructure and cutting-edge technology to outpace our adversaries. Read this post to learn more about the two-day event.