We are pleased to share that an additional 15 AWS services have recently been evaluated as part of the Information Security Registered Assessors Program (IRAP) following a successful audit conducted in June 2021 by a certified IRAP assessor from the Australian Signals Directorate (ASD). This update raises the total number of services assessed at the IRAP PROTECTED level to 112, providing Australian customers with enhanced security assurances.
In another significant development, we have outlined strategies to bolster the protection of sensitive data stored in Amazon S3 by leveraging additional AWS services. Our team, including experts like Michael Roberts and Sarah Kim, has published a detailed guide on detecting and safeguarding your Amazon S3 data. This includes recent insights on redacting and transforming personally identifiable information using Amazon S3 Object Lambda. For further reading on this topic, don’t miss another blog post that delves deeper into related AWS services here.
Furthermore, we highlight the three key AWS WAF rate-based rules that are essential for proactively defending your web applications against common HTTP flood events. Our specialists, including Laura Green and Eric Thompson, have updated this guidance to reflect the new lowest allowable rate limit setting.
To enhance your organization’s security posture, we also discuss how to restrict IAM roles to access AWS resources based on specific geolocations using AWS Client VPN. With this approach, organizations can enforce stricter security measures, especially for users accessing resources from personal devices. For more authoritative insights on this subject, visit this link.
In terms of operational security, we provide steps to implement a centralized patching solution across multiple AWS Regions using AWS Systems Manager. This method allows you to effectively initiate, monitor, and manage patches across your AWS infrastructure, ensuring that your systems remain secure and up to date.
Lastly, we are excited to announce the completion of the third Outsourced Service Provider Audit Report (OSPAR) audit cycle, which now includes 127 services in scope. This report reflects our commitment to maintaining high standards of security and compliance across our offerings.
For those looking for a comprehensive understanding of AWS security practices, check out this excellent resource here.
Location: Amazon IXD – VGT2, 6401 E Howdy Wells Ave, Las Vegas, NV 89115.
Leave a Reply