AWS GovCloud (US) - An Overview

43
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS GovCloud (US) - An Overview Karen Arango AWS GovCloud Product Manager ©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved.

TAGS:

Transcript of AWS GovCloud (US) - An Overview

Page 1: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS GovCloud (US) - An Overview

Karen ArangoAWS GovCloud Product Manager

©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved.

Page 2: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS Global Infrastructure

Over 1 million active customers across 190 countries

1,700 government agencies

4,500 educational institutions

AWS Infrastructure

11 regions

28 availability zones

53 edge locations

Page 3: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS GovCloud (US) Region

Page 4: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Data

Network

Machine

Isolated AWS Region

Separate AWS Identity & Access Management (IAM) stack

Page 5: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

by

US Persons on US Soil

AWS Managed

Page 6: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

History of Innovation

Page 7: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Amazon VPC

Amazon EC2

Amazon EBS

2011

April 9, 2015

IAM

Amazon S3

Page 8: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Amazon VPC

Amazon EC2

Amazon EBS

Amazon CloudWatch

Elastic Load Balancing

Auto Scaling

AWS Command Line Interface

2011 2012

April 9, 2015

Amazon RDS

Amazon SQS

Amazon SNS

IAM

Amazon S3

Page 9: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Amazon VPC

Amazon EC2

Amazon EBS

Amazon CloudWatch

Elastic Load Balancing

Auto Scaling

AWS Command Line Interface

Amazon Elastic MapReduce

AWS Management Console

2011 2012 2013

April 9, 2015

Amazon RDS

Amazon SQS

Amazon SNS

IAM

Amazon S3Amazon SWF

Amazon DynamoDB

Page 10: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Amazon VPC

Amazon EC2

Amazon EBS

Amazon CloudWatch

Elastic Load Balancing

Auto Scaling

AWS Command Line Interface

Amazon Elastic MapReduce

AWS Management Console

Second Generation Instance Types

Amazon Glacier

Amazon EC2 VM Import

Service Health Dashboard

2011 2012 2013 2014

April 9, 2015

Amazon RDS

Amazon SQS

Amazon SNS

IAM

Amazon S3Amazon SWF

Amazon DynamoDB

Amazon Redshift

AWS CloudTrail

Amazon VPC Peering

Page 11: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Amazon VPC

Amazon EC2

Amazon EBS

Amazon CloudWatch

Elastic Load Balancing

Auto Scaling

AWS Command Line Interface

Amazon Elastic MapReduce

AWS Management Console

Second Generation Instance Types

Amazon Glacier

Amazon EC2 VM Import

Service Health Dashboard

2011 2012 2013 2014 2015 *to date

April 9, 2015

Amazon ElastiCache

Amazon S3 Lifecycle

Management

Amazon EC2 VM Export

AWS Key Management Service

Amazon RDS

Amazon SQS

Amazon SNS

IAM

Amazon S3Amazon SWF

Amazon DynamoDB

Amazon Redshift

Amazon CloudTrail

Amazon VPC Peering

Amazon EBS Encryption

Amazon RDS Encryption

Amazon Redshift Encryption

Amazon EMR Encryption

Amazon S3 Encryption

Page 12: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Security & Compliance

Page 13: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Addresses Regulatory & Compliance Requirements

Boundary Protection

Mandatory VPC

Auditing

CloudTrail-Enabled Accounts

Encryption

FIPS 140-2 Endpoints

Page 14: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Encryption

AWS Key Management Service

EBS RDS S3 EMR Redshift

Page 15: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Certifications & Accreditations

IAM EC2 EBSVPC S3

Levels1-2, 3-5

Page 16: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Requirements for Access

Can handle export controlled data US Person US Entity

Page 17: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Security is a Shared Responsibility

Page 18: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Facilities

Physical security

Infrastructure

Virtualization layer

Service endpoints

Identity & Access Management

Security of the CloudAmazon Responsibility

Page 19: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Network configuration

Security groups

OS firewalls

Operating systems

Application security

Account management

Authorization policies

Customer Responsibility

Security in the Cloud

Page 20: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

HIPAA Whitepape

r

Compliance of the Cloud

FedRAMPSM Agency ATO

DoD CSM Levels 1-2, 3-

5

FISMA

DIACAP

CJIS Workbook

Page 21: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Compliance Documentation

Compliance in the Cloud

System Security Plan

Architecture Documentati

on

Page 22: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Regulated Data

Page 23: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Controlled Unclassified Information

Export ControlledITAR

Page 24: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Mars Science Laboratory Data AnalyticsUsing Elastic Search and HDFS

Phillip Southam - Senior Software Systems ArchitectDan Isla – IT Data Scientist

Page 25: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Mars Science Laboratory Engineering Operations Team

The Mission

Engineering Operations completes rover engineering health assessment & analysis in support operations of the

MSL spacecraft.

Page 26: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

The Problem

Gold Source of Data

MySQL database with 10B records

Only current interface is DB query

Limited flexibility of interfaces

ITAR compliance of all data sources

Page 27: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

The Solution

Elastic Search as front and back end data store to query and visualize spacecraft channel data

HDFS as data store for custom dashboards, plotting applications, and scripts

REST APIs to allow for platform independent data consumption

Tool suite to simplify cluster operation

Page 28: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

The Architecture

Page 29: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Controlled Unclassified Information

Nuclear

AgricultureCopyright

Critical InfrastructureIntelligence

PatentLaw Enforcement

Page 30: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Controlled Unclassified Information

Financial

PrivacyProprietary (IP)

Statistical (Census)Tax

Transportation

Healthcare

Page 31: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Workloads

Page 32: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Evolution of Workloads

Websites Backup & Recovery Archiving Disaster Recovery

Page 33: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Evolution of Workloads

Dev & Test Big Data High Performance Computing

Page 34: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Evolution of Workloads

Business Applications Enterprise IT

Page 35: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Customers

Page 36: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS GovCloud Adoption273% average YoY growth since

launch

(Q4 2011 to Q4 2014)

2011 2012 2013 2014

Page 37: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Government

Federal State Local

Page 38: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Not Just for Government!

Educational Institutions

Research Organization

s

Private Industry

Page 39: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS Partners

Consulting Partners

Technology Partners

SaaS Providers

Resellers

Page 40: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

How do I get access?

Page 41: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Questions?

Keith BrooksAWS GovCloud Business

[email protected]

Karen ArangoAWS GovCloud Product Manager

[email protected]

Page 42: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

AWS GovCloud Resources

Website: http://aws.amazon.com/govcloud-us

User Guide: http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/welcome.html

Console: https://console.amazonaws-us-gov.com/console

Service Health Dashboard: http://status.aws.amazon.com/govcloud

http://aws.amazon.com/govcloud-us
http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/welcome.html
http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/welcome.html
https://console.amazonaws-us-gov.com/console
http://status.aws.amazon.com/govcloud
Page 43: AWS GovCloud (US) - An Overview

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Thank You.This presentation will be loaded to SlideShare the week following the Symposium.

http://www.slideshare.net/AmazonWebServices

AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015


AWS December 2015 Webinar Series - AWS Service Overview

AWS December 2015 Webinar Series - AWS Service Overview

‘GOVCLOUD: the Queensland LG Experience’ Jock O’Keeffe Director – Govcloud, and Director – Resolute Information Technology.

‘GOVCLOUD: the Queensland LG Experience’ Jock O’Keeffe Director – Govcloud, and Director – Resolute Information Technology.

FedRAMP High & AWS GovCloud (US): FISMA High Requirements

FedRAMP High & AWS GovCloud (US): FISMA High Requirements

AWS Security - d36cz9buwru1tt.cloudfront.net · AWS Gov Cloud Summit II Designed for US Government Customers AWS will screen customers prior to providing access to the AWS GovCloud

AWS Security - d36cz9buwru1tt.cloudfront.net · AWS Gov Cloud Summit II Designed for US Government Customers AWS will screen customers prior to providing access to the AWS GovCloud

C CLICK TO EDIT MASTER TITLE STYLE O C A PA B … · MongoDB INTERNET INFORMATION SERVER SharePoint Python Node.js Java CLOUD HOSTING AWS, AWS GovCloud Azure USER INTERFACE AND CLIENT-SIDE

C CLICK TO EDIT MASTER TITLE STYLE O C A PA B … · MongoDB INTERNET INFORMATION SERVER SharePoint Python Node.js Java CLOUD HOSTING AWS, AWS GovCloud Azure USER INTERFACE AND CLIENT-SIDE

Overview of GovCloud Today

Overview of GovCloud Today

Managed Services Our new PowerPoint GovCloud Portfolio template€¦ ·  · 2015-05-14Managed Services Our new PowerPoint GovCloud Portfolio template ... Atos Hong Kong GovCloud

Managed Services Our new PowerPoint GovCloud Portfolio template€¦ ·  · 2015-05-14Managed Services Our new PowerPoint GovCloud Portfolio template ... Atos Hong Kong GovCloud

AWS overview - Steve Bryen, AWS

AWS overview - Steve Bryen, AWS

An Introduction to AWS GovCloud (US) | AWS Public Sector Summit 2016

An Introduction to AWS GovCloud (US) | AWS Public Sector Summit 2016

AWS GovCloud (US)AWS GovCloudH (US) User Guide How Amazon Elastic Container Registry Differs for AWS GovCloud (US) ..... 125 Documentation for Amazon Elastic Container Registry

AWS GovCloud (US)AWS GovCloudH (US) User Guide How Amazon Elastic Container Registry Differs for AWS GovCloud (US) ..... 125 Documentation for Amazon Elastic Container Registry

Moving Workloads into AWS GovCloud (US) - AWS Symposium 2014 - Washington D.C.

Moving Workloads into AWS GovCloud (US) - AWS Symposium 2014 - Washington D.C.

Introducing AWS GovCloud and Lingotek | The Translation ... · Mark Ryland Chief Solutions Architect May 15th, 2012 . Amazon as a Cloud Pioneer! ... • Security Overview & Best Practices

Introducing AWS GovCloud and Lingotek | The Translation ... · Mark Ryland Chief Solutions Architect May 15th, 2012 . Amazon as a Cloud Pioneer! ... • Security Overview & Best Practices

AWS Overview - SMU

AWS Overview - SMU

AWS GovCloud (US) and the Enterprise | AWS Public Sector Summit 2016

AWS GovCloud (US) and the Enterprise | AWS Public Sector Summit 2016

GovCloud - iGovPhil Programi.gov.ph/wp-content/uploads/2017/03/GovCloud-Next... · Onboarding procedures for Govcloud 1 Submit Request. 2 The agency is assigned to an Organizational

GovCloud - iGovPhil Programi.gov.ph/wp-content/uploads/2017/03/GovCloud-Next... · Onboarding procedures for Govcloud 1 Submit Request. 2 The agency is assigned to an Organizational

AWS GovCloud (US) AWS GovCloud (US) Region also has high-level differences compared to the standard AWS regions. These differences are important when you evaluate and use the AWS

AWS GovCloud (US) AWS GovCloud (US) Region also has high-level differences compared to the standard AWS regions. These differences are important when you evaluate and use the AWS

AWS Services Overview

AWS Services Overview

AWS GovCloud (US) User Guide - AWS GovCloud (US) User …AWS GovCloud (US) UserD Guide AWS GovCloud (US) User Guide Documentation for AWS Elastic Beanstalk..... 104

AWS GovCloud (US) User Guide - AWS GovCloud (US) User …AWS GovCloud (US) UserD Guide AWS GovCloud (US) User Guide Documentation for AWS Elastic Beanstalk..... 104

AWS - Services overview

AWS - Services overview

AWS Pricing Overview

AWS Pricing Overview