Among several exciting announcements we heard at AWS re:Invent 2018 was one that hit close to our Loudoun County home – the new AWS GovCloud (US-East) Region. Joining GovCloud (US-West), the first of its kind, the East region is the second for AWS GovCloud and the 19th AWS region in the world. This announcement is significant, particularly to the Washington DC area of the east coast, home to the ParkMyCloud headquarters and a significant number of U.S. government departments and agencies.
The US-East region adds three more Availability Zones to AWS GovCloud, doubling the three total that were previously included with the existing infrastructure. This is great news for U.S. customers in the public and commercial sector in highly regulated industries that must meet meet stringent compliance requirements, including those for disaster recovery and continuity of operations. The new region is compatible with EC2, S3, and RDS instance types, among more.
Why does AWS GovCloud matter?
The advantages of scalability, security, and agility in the cloud are alluring. But for customers with sensitive data and strict compliance and security requirements, like government agencies, using the cloud is a tricky process with a huge checklist to follow. To provide the same benefits of cloud services while meeting even the most stringent U.S. government requirements, Amazon designed an isolated cloud region only for those users – AWS GovCloud.
What’s Different in AWS GovCloud?
Think of AWS GovCloud as Amazon’s “gated community.” GovCloud vets all of its government customers and their partners to create secure cloud solutions, meeting compliance requirements for FedRAMP, the DOJ’s Criminal Justice Information Systems (CJIS), U.S. International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG), FIPS 140-2, IRS-1075, and more. This specialized region allows for customers to host sensitive Controlled Unclassified Information (CUI) that includes data in categories such as agriculture, patent, export, critical infrastructure, immigration, law enforcement, proprietary business info, statistical, tax, financial, and transportation, to name a few. GovCloud is ideal for government agencies at the federal, state, and local level, as well as organizations in regulated industries including financial, technology, energy, healthcare, law enforcement, defense, enterprise, and aerospace.
How do I qualify to be a GovCloud customer?
GovCloud is only available to vetted U.S. entities and root account holders with U.S. citizenship. AWS ensures address compliance in the cloud with network, data, and virtual machines that are isolated from all other AWS cloud regions. GovCloud features a separate identity and access management stack with unique credentials that work only within the AWS GovCloud region. In addition, the region is managed solely by AWS personnel of U.S. citizenship, on U.S. soil, and users get their own separate management console. The region also has endpoints specific to its region, including the option to use designated endpoints, meeting FIPS 100-2 compliance requirements.
Why go GovCloud?
Whether it’s Personally Identifiable Information (PII), patient medical records, financial data, law enforcement data, or other forms of CUI, AWS GovCloud allows users to meet compliance requirements on their cloud journey. Government agencies have an opportunity with Amazon to support mission critical workloads for enterprise applications, high performance computing, big data, storage & disaster recovery. For a U.S. cloud with vetted access, that meets compliance, guards data, improves identity management, protects workloads, and enhances cloud visibility, AWS GovCloud is the way to go.