Tag: compliance

Feed: AWS Public Sector Blog. Author: Tom Wollard. Amazon Web Services (AWS) is launching the AWS Cybersecurity Maturity Model Certification (CMMC) Customer Responsibility Matrix (CRM). The AWS CMMC CRM reduces the level of effort required for CMMC compliance by providing customers a breakdown of the CMMC practices that they can inherit from AWS. The CMMC CRM identifies CMMC practice roles and responsibilities when using the AWS Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US). The CRM provides customers with narrative descriptions that can be used across their CMMC security documentation, like the systems security plan (SSP), and ... Read More

Feed: Recent Announcements. AWS Gateway Load Balancer (GWLB) is now a Payment Card Industry Data Security Standard (PCI DSS) compliant service. GWLB helps you deploy, scale, and manage third-party virtual network appliances such as firewalls, intrusion detection and prevention systems, analytics, and traffic visibility systems. As an addition to the Elastic Load Balancer family, GWLB combines a transparent network gateway (that is, a single entry and exit point for all traffic) and a load balancer that distributes traffic and scales your virtual appliances horizontally based on demand. Customers can now use GWLB for workloads that are subject to PCI DSS ... Read More

Feed: Journey to AI Blog; Author: Abdel Hamou-Lhadj; In the recent decade, the value of Artificial Intelligence (AI) has been demonstrated in many industries. These trends have increased the interest of many organizations in AI technologies, not just to streamline business operations, but also to gain a competitive advantage. However, the deployment and use of AI to support business operations may present significant risks to individuals, groups, and even society, if not managed according to clear principles and practices, such as those represented in particular sets of authoritative rules. That management would mitigate the possibility that AI could infringe upon ... Read More

Feed: Puppet.com Blog RSS Feed. Author: ; Once upon a time, there was a compliance check-box mentalityThroughout my career within the compliance and security space, I’ve seen the practice of proactively managing digital risk move from a nice-to-have to a must-have for enterprise organizations. And over the last 5 years, things have shifted drastically. Personally, it reminds me of the classic “Dry Bones” nursery rhyme song that my son loves so much which points out how all the different bones are connected to make one body. Compliance, Risk Management, Security, and IT are all bones connected to form the body ... Read More

Feed: Recent Announcements. AWS Network Firewall is now a Payment Card Industry Data Security Standard (PCI DSS) compliant service. AWS Network Firewall is a managed firewall service that makes it easy to deploy essential network protections for all your Amazon Virtual Private Clouds (VPCs). The service automatically scales with network traffic volume to provide high-availability protections without the need to set up or maintain the underlying infrastructure. AWS Network Firewall is integrated with AWS Firewall Manager to provide you with central visibility and control of your firewall policies across multiple AWS accounts. Customers can now use AWS Network Firewall to ... Read More

Feed: Journey to AI Blog; Author: Heather Gentile; The pandemic and its economic disruptions have shown us the world can change in a matter of hours. To keep the public safe, regulatory bodies have scrambled to introduce new measures, often with little notice. According to regulatory compliance experts at Thomson Reuters (TR), the yearly number of regulatory alerts has risen from 8,704 in 2008 to more than 58,000 in 2020. A new regulatory alert is issued every seven minutes and financial institutions must triage more than 220 regulatory alerts every day. To keep pace, modern enterprises need a proactive approach ... Read More

Feed: AWS Public Sector Blog. Author: Randy Domingo. In our recent post, Building your Cybersecurity Maturity Model Certification (CMMC) strategy using cloud technologies, we reviewed how the defense industrial base (DIB) community can leverage the AWS Cloud to reduce the time, effort, complexity, and risk for deploying CMMC compliant environments. DIB customers want the ability to quickly deploy secure, scalable, multi-account environments based on AWS best practices, including the AWS Well-Architected Framework. The new Amazon Web Services (AWS) Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution was purpose built to help customers accelerate the deployment of ... Read More

Feed: Recent Announcements. Amazon Fraud Detector is a fully managed service that makes it easy to identify potentially fraudulent online activities, such as credit card transactions that are likely to result in costly chargebacks, using customized machine learning models. The service now supports Payment Card Industry Data Security Standard (PCI DSS), which applies to entities that store, process, or transmit cardholder data or sensitive authentication data. You can now use Amazon Fraud Detector for workloads that are subject to PCI DSS compliance. Amazon Fraud Detector’s PCI DSS compliance demonstrates our commitment to information security. With features such as default encryption at ... Read More

Feed: Recent Announcements. Patch Manager, a feature of AWS Systems Manager, now provides a more holistic view of the patch compliance and inventory of your fleet of instances by additionally reporting on stopped instances. This feature helps you to further simplify patch compliance and inventory reporting because information is now readily available for stopped instances. To get started, navigate to Fleet Manager in the Systems Manager console. From there, you can view stopped instances, including inventory and patch compliance based on the last known state. You can quickly filter the instances to view only running instances using the Instance Status ... Read More

Feed: AWS Partner Network (APN) Blog. Author: Amit Verma. By Amit Verma, AWS Security Practice Head – Wipro By Bhavesh Kumar Bhatt, Cloud Security Practice Head – WiproBy Stephen Randolph, Sr. Partner Solutions Architect – AWSBy Tushar Agarwal, Sr. Partner Solutions Architect – AWS Most enterprises are at different stages of their cloud journey. No matter where customers are at, a question that’s increasingly on their minds is, “How do we maintain or improve security and compliance posture during and after the migration?” In the pre-migration stage, there tends to be a lack of a uniform approach to assessing workloads ... Read More