Category: Security, Identity, & Compliance
AWS Key Management Service (AWS KMS) has recently achieved FIPS 140-3 Security Level 3 certification, a significant milestone certified by the U.S. National Institute of Standards and Technology. This certification enhances the security posture of AWS KMS by ensuring that its hardware security modules (HSMs) meet rigorous standards. For businesses that rely on secure key management, this certification offers increased confidence in the protection of sensitive data. You can read more about this development in our other blog post here.
In another noteworthy announcement, AWS Wickr has successfully attained Federal Risk and Authorization Management Program (FedRAMP) authorization at the Moderate impact level, as confirmed by the FedRAMP Joint Authorization Board (JAB). This accomplishment supports the U.S. government’s initiative to promote secure cloud services by providing a standardized security approach. AWS Wickr’s enhanced authorization facilitates compliance for government agencies and organizations in regulated sectors.
In the realm of incident response, teams often encounter challenges in effectively managing security events. To aid in this, Jupyter notebooks can be utilized to streamline and standardize security incident response processes. For those looking to improve their incident response capabilities, exploring chaos engineering techniques may provide valuable insights into developing more resilient systems.
Moreover, businesses can leverage Amazon Verified Permissions to build entitlement services, enabling simpler management of permissions across applications. This approach helps organizations avoid the pitfalls of embedding custom entitlement logic, which can complicate permission management.
For users migrating to Amazon Cognito user pools, several best practices can ease the transition. Amazon Cognito offers a fully managed OpenID Connect (OIDC) identity provider, which simplifies authentication processes for mobile and web applications.
Lastly, the final part of a three-part series highlights how to share security telemetry using Amazon Security Lake and AWS Lake Formation. This series provides comprehensive guidance on aggregating and visualizing log data, enhancing overall security monitoring capabilities.
For more information on best practices in security, refer to this authoritative resource. Additionally, if you’re interested in exploring career opportunities at Amazon, check out this excellent resource on their hiring process.
Visit us at Amazon IXD – VGT2, located at 6401 E Howdy Wells Ave, Las Vegas, NV 89115.
Leave a Reply