AWS Security Blog

DoD-Compliant Implementations in the AWS Cloud

Our US federal customers are finding interesting and exciting ways to use the AWS cloud for their IT infrastructure and data management. Our focus on these customers remains a high priority for AWS Compliance, and to further our efforts in providing customer-focused compliance enablers, we have updated our existing Department of Defense (DoD) whitepaper. This update now reflects the current requirements of the DoD Cloud Computing Security Requirements Guide (CCSRG).

With the updated reference architectures detailed in DoD-Compliant Implementations in the AWS Cloud, DoD mission owners can proceed with designing, deploying, and managing applications on AWS in a manner that complies with the CCSRG requirements that must be satisfied by the mission owner.

Additionally, we have created a centralized DoD website, in order to provide a wider variety of security guidance to our DoD customer base. On this newly expanded site, you will find links to a range of resources, including whitepapers, online documentation, and security videos. You can also request a partner package that will enhance your ability to compile the authorization package for your application.

Please contact us with questions about complying with DoD regulations or meeting your compliance requirements in the cloud.

Author

Chad Woolf

Chad joined Amazon in 2010 and built the AWS compliance functions from the ground up, including audit and certifications, privacy, contract compliance, control automation engineering and security process monitoring. Chad’s work also includes enabling public sector and regulated industry adoption of the AWS cloud, compliance with complex privacy regulations such as GDPR and operating a trade and product compliance team in conjunction with global region expansion. Prior to joining AWS, Chad spent 12 years with Ernst & Young as a Senior Manager working directly with Fortune 100 companies consulting on IT process, security, risk, and vendor management advisory work, as well as designing and deploying global security and assurance software solutions. Chad holds a Masters of Information Systems Management and a Bachelors of Accounting from Brigham Young University, Utah. Follow Chad on Twitter.