• Save
SEC202 Federal Government Compliance Best Practices in the Cloud - AWS re: …
Upcoming SlideShare
Loading in...5

Like this? Share it with your network


SEC202 Federal Government Compliance Best Practices in the Cloud - AWS re: …






Total Views
Views on SlideShare
Embed Views



0 Embeds 0

No embeds



Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
Post Comment
Edit your comment

SEC202 Federal Government Compliance Best Practices in the Cloud - AWS re: … Presentation Transcript

  • 1. http://aws.amazon.com/security/ (GovCloud Only)
  • 2. Customer’s isolated AWS resources Subnets NAT Internet Router VPN gateway Amazon Secure VPN Web Services connection over cloud the InternetCustomer’snetwork
  • 3. • Required for all customers
  • 4. www.elasticwolf.com
  • 5. “Using AWS’s cloud to operate the mars.jpl.nasa.gov website enables JPL to get images, videos and developments to the public quickly, without having to build and operate the infrastructure in-house”.* --Khawaja Shams, Senior Solution Architect, NASA Jet Propulsion Laboratory Public Sector case study Organizational Benefits• NASA JPL uses AWS to capture and store images and • Mars.jpl.nasa.gov website had the availability, meta data collected from the Mars Exploration Rover and scalability and performance needed during live Mars Science Laboratory missions. streaming of the Mars landing event.• Right before landing, NASA/JPL was able to leverage the • Use of Amazon Route 53 and Elastic Load Balancing AWS cloud to rapidly provision capacity and successfully enables NASA to balance load across AWS regions to deliver engaging experiences of the mission to Mars to ensure the availability of its content under any fans globally. circumstance.*From: CloudTweaks NewsCatherine BalavageAugust 14, 2012http://www.cloudtweaks.com/2012/08/amazon-reaches-mars/
  • 6. “Our migration to the cloud took only 22 days from feasibility study to production.”Recovery.gov --Jim Warren, Chief Information Officer, Recovery Accountability and Transparency Board Public Sector case study Organizational Benefits• The RATB originally intended to use Amazon Web • Andre Romano of Newsweek wrote, “The current Services (AWS) only for development, testing, and as incarnation of Recovery.gov…is perhaps the clearest, failover richest interactive database ever produced by the• The RATB now uses the following AWS services: Amazon American bureaucracy.” Elastic Compute Cloud (EC2), Amazon Simple Storage • The Geospatial tools, based on ESRI software, allow up Service (S3), Amazon Elastic Block Storage (EBS), Elastic to 5,000 concurrent users and enables them to go Load Balancing , and Amazon CloudWatch. directly to go to their communities of interest at the state, zip, congressional district, or county level.
  • 7. "I view this project as a Lewis and Clark expedition to the interior of the human genome” 1000 Genomes Project - Stephen Sherry, Ph.D., Chief of the Reference Collections Section Public Sector case study Organizational Benefits• The 1000 Genomes Project is an international research • Researchers can use the Amazon EC2 utility computing effort coordinated by a consortium of 75 companies and service to dive into this data without the usual capital organizations to establish the most detailed catalogue of investment required to work with data at this scale. human genetic variation. The project has grown to 200 terabytes of genomic data including DNA sequenced from • All 200 TB of the latest 1000 Genomes Project data is more than 1,700 individuals that researchers can now available in a publicly available Amazon S3 bucket at access on AWS for use in disease research. s3.amazonaws.com/1000genomes
  • 8. Logical Server Granular Logical Physical Government Only ITAR Sample Workloads and Information Network Server Physical Network Compliant Application Access Policy Isolation Isolation and Facility (US Persons Isolation Isolation Only)AWS public   Public-facing apps &regions web sites, critical applications, FISMA low & moderateAmazon Virtual     Data center extension,Private Cloud TIC environment, some(VPC) CUI, FISMA moderateAWS GovCloud       USP compliant, CUI(US) and government- specific apps
  • 9. http://aws.amazon.com/govcloud-us/contact/
  • 10. We are sincerely eager to hear your feedback on thispresentation and on re:Invent. Please fill out an evaluation form when you have a chance.