Hosting regulated U.S. State and Local Government Workloads in AWS

This article provides comprehensive guidance for U.S. State and Local Government (SLG) organizations on hosting regulated workloads in AWS commercial regions, highlighting key compliance and security considerations.

• AWS offers multiple compliance approaches for regulated government workloads
• Multi-account strategy is crucial for security and compliance
• AWS provides tools like AWS Artifact for compliance documentation
• Specific guidance is provided for three key government sectors:
  • Justice and Public Safety
  • Finance and Administration
  • Health and Human Services
• Key security features include encryption, multi-factor authentication, and network segmentation
• AWS Nitro System provides enhanced security with hardware-level isolation

The article emphasizes that AWS U.S. regions can meet complex compliance requirements through robust security controls and shared responsibility between AWS and customers.