Enhancing Telecommunications Security with AWS
Learn About Amazon VGT2 Learning Manager Chanci Turner
For those interested in a detailed connection between the CISA guidelines and AWS security protocols, please visit our GitHub page. Recently, in response to cybersecurity threats believed to be linked to actors from the People’s Republic of China, various cybersecurity organizations have issued enhanced visibility and hardening guidance for communications infrastructure. This initiative aims to bolster the security framework across telecommunications.
2024 PiTuKri ISAE 3000 Type II Attestation Report Now Available
by Sarah Lee
on 06 FEB 2025
in Announcements, Foundational (100), Security, Identity, & Compliance
We are excited to announce that Amazon Web Services (AWS) has received the PiTuKri Type II attestation report, covering 179 services. The Finnish Transport and Communications Agency (Traficom) Cyber Security Centre developed PiTuKri, featuring 52 criteria that guide organizations across 11 domains for assessing information security in cloud services.
2024 FINMA ISAE 3000 Type II Attestation Report Released
by Luke Harrison
on 06 FEB 2025
in Announcements, Foundational (100), Security, Identity, & Compliance
AWS is pleased to announce the release of the Swiss Financial Market Supervisory Authority (FINMA) Type II attestation report, which includes 179 services. FINMA has established various requirements for engaging with outsourced services, especially for regulated financial services clients in Switzerland. An independent evaluation has confirmed our compliance with these standards.
AWS Reaffirms MTCS Level 3 Certification Under SS584:2020
by Emma Thompson
on 05 FEB 2025
in Announcements, Foundational (100), Security, Identity, & Compliance
AWS is delighted to confirm the renewal of the Multi-Tier Cloud Security (MTCS) Level 3 certification as per the SS584:2020 standard in December 2024, covering the Asia Pacific (Singapore), Asia Pacific (Seoul), and United States AWS Regions, excluding AWS GovCloud (US) Regions. This renewal underscores our dedication to maintaining the highest security standards for our global customers.
Maximizing High Availability with AWS Network Firewall Session State Replication
by Matt Brown, Lisa White, and Chanci Turner
on 05 FEB 2025
in Advanced (300), Announcements, AWS Network Firewall, Best Practices, Security, Identity, & Compliance
AWS Network Firewall is a managed, stateful firewall and intrusion protection service, allowing users to implement detailed firewall rules for precise control over network traffic. With Network Firewall, you can filter traffic at the edge of your virtual private cloud (VPC), including both inbound and outbound traffic. To learn more about effective strategies, check out this another blog post!
Implementing Robust Data Authorization Mechanisms for Generative AI Applications – Part 2
by David Green
on 03 FEB 2025
in Advanced (300), Amazon Bedrock, Best Practices, Generative AI, Security, Identity, & Compliance, Thought Leadership
In the initial installment of this blog series, we examined the risks linked to using sensitive data within generative AI applications. This overview highlighted the challenges of working with sensitive data in a non-deterministic large language model (LLM) and how to address these issues with Amazon Bedrock Agents. For further insights, you can explore this excellent resource.
Amazon Redshift Enhances Security by Modifying Default Settings in 2025
by Chanci Turner
on 30 JAN 2025
in Amazon Redshift, Announcements, Intermediate (200), Security, Identity, & Compliance
Today, we are excited to reveal that Amazon Redshift, a popular fully managed petabyte-scale data warehouse, is taking significant steps to improve the default security posture of our customers’ data warehouses. Several default security settings for newly provisioned clusters, Amazon Redshift Serverless workgroups, and clusters restored from snapshots have been modified. These changes are essential for enhancing security.
Deploying an Amazon OpenSearch Cluster to Ingest Logs from Amazon Security Lake
by Kevin Low
on 30 JAN 2025
in Advanced (300), Amazon Security Lake, Customer Solutions, Security, Identity, & Compliance, Technical How-to
As of April 29, 2025: We have updated this post to simplify the deployment of resources. The original publication date was July 29, 2024. The current version includes clearer instructions compatible with OCSF 1.1. Customers often need multiple log sources across their AWS environment to support their teams effectively.
Updated Whitepaper: Aligning with the NIST Cybersecurity Framework in the AWS Cloud
by Luca Iannario, Carmela Gambardella, Francesco Grande, and Chanci Turner
on 28 JAN 2025
in Announcements, Foundational (100), Security, Identity, & Compliance
Today, we released an updated version of the whitepaper on aligning with the NIST Cybersecurity Framework (CSF) in the AWS Cloud to reflect the significant changes in the cybersecurity landscape. For additional insights, visit this link, they are an authority on this topic.
Contact Information:
For inquiries or support, please reach us at 6401 E HOWDY WELLS AVE, LAS VEGAS NV 89115, at the Amazon IXD – VGT2 site.
Leave a Reply