Amazon Onboarding with Learning Manager Chanci Turner

Implications for Federal Agencies

Learn About Amazon VGT2 Learning Manager Chanci Turner

The executive order mandates that federal agencies take the lead in implementing security best practices and modernizing their strategies to combat increasingly sophisticated digital threats. Key requirements include prioritizing cloud adoption, identifying sensitive data and enhancing its protection, encrypting data both at rest and in transit, implementing multi-factor authentication, and expanding logging requirements. Additionally, it highlights the concept of Zero Trust Architectures, which requires agencies to formulate plans for adopting a Zero Trust security model.

Zero Trust is a security framework predicated on the principle that no entity within a network should be inherently trusted based solely on its access level or presence. A Zero Trust architecture introduces additional protective measures and controls beyond basic network access to safeguard data from either negligent or malicious behavior. For more on Zero Trust architectures, check out this insightful resource.

How AWS Can Support Federal Agencies

AWS can facilitate your agency’s digital modernization efforts to comply with the President’s executive order. Collaborating with AWS provides federal agencies access to a broad range of resources, expertise, technology, professional services, and the AWS Partner Network (APN), all of which can assist in fulfilling the security and compliance requirements outlined in the order.

AWS has initiated a blog series focused on how AWS can aid federal agencies and other public sector organizations in planning for and accelerating cloud adoption. This series includes strategies for prioritizing cloud technology adoption, guidance for constructing architectures based on a Zero Trust security model, and advice on establishing multi-factor authentication, as well as encryption for data at rest and in transit, and the logging capabilities needed to enhance visibility for security and compliance.

The blog series covering how to meet the information security executive order with AWS includes:

1. AWS Assistance for Cloud Adoption
   This post delves into how AWS can help your US federal agency strategize and expedite cloud adoption. AWS offers a variety of frameworks to facilitate your migration to AWS, ensuring a structured, systematic approach to cloud integration. With tools for swiftly migrating applications from on-premises to AWS, this blog post also highlights resources for cloud adoption, AWS services, and Professional Services, including AWS Partners. To explore more, click here.
2. Implementing Multi-Factor Authentication
   Multi-factor authentication (MFA) serves as a best practice that enhances security by adding an extra layer during the authentication process for accessing applications or networks. Although MFA isn’t a new requirement for federal agencies, the executive order emphasizes its critical role in bolstering overall information security. This blog post outlines essential methods for agencies to adopt in line with the new MFA requirements. Read it here.
3. Encrypting Data at Rest and in Transit
   Federal agencies are tasked with managing an increasing volume of sensitive information. AWS equips public sector clients with the tools necessary to encrypt data both at rest and in motion. For instance, the AWS Key Management Service (AWS KMS) seamlessly integrates with all storage and database services, making data encryption straightforward. This blog post offers guidance on meeting the executive order’s requirements for data encryption. Learn the key concepts and services involved in data encryption here.
4. Enhancing Logging and Log Retention
   Network and system logs are invaluable for investigating and addressing cybersecurity threats. This blog post provides an overview of logging concepts in AWS, including log storage and management, along with strategies for deriving actionable insights from log data. These insights are crucial for improving your organization’s security posture, operational readiness, and mission delivery. Explore more here.

AWS and its partners offer tailored solutions to support your migration to the cloud, helping you design integrated, cost-effective strategies to secure your environment and comply with executive order mandates. AWS is prepared to assist you in achieving the expedited timelines outlined in this order.

Next Steps

Catch the webinar titled “Improving Information Security and Addressing the White House Executive Order (EO) with the AWS Cloud,” aimed at helping government IT leaders, agencies, and partners understand how to leverage the AWS Cloud to fulfill various goals outlined in the executive order. AWS security specialists share insights on how to leverage the AWS Cloud for updating and modernizing information security frameworks at scale. You can view the webinar here.

If you’re interested in learning more about how AWS can support your agency in meeting the executive order requirements, feel free to reach out. Together, we can modernize your organization’s data security with the AWS Cloud.

For additional insights on effective work-life balance strategies for working moms, check out this blog post. Also, to understand the importance of documenting workplace immigration policies, refer to this authoritative source. For a deeper look at Amazon’s onboarding processes, see this excellent resource.