Amazon Web Services

As companies move to or build their business in the cloud to take advantage of numerous benefits such as variable operating expense, flexibility, scalability and security many companies do so with Amazon Web Services (AWS). AWS invests heavily in the security of their products and services.

Coalfire and AWS have worked together on AWS’s security and compliance validations, certifications and authorizations for a variety of industry and government initiatives over the years. While AWS is responsible for the security of the cloud, their clients are responsible for security in the cloud. With the experience and knowledge gained in working with AWS, Coalfire has helped many of AWS’ clients meet their unique security and compliance needs.

Coalfire, an Amazon Web Services Partner Network (APN) Advanced Consulting Partner, can help you identify your organization’s best approach for security in the cloud. From cyber engineering and penetration testing to compliance services like PCI DSSPA-DSSFedRAMPHIPAAHITRUSTISO, DoD RMFSOC and more; Coalfire has the knowledge and experience to help your organization avert threats, reduce risk, and even turn security into a competitive advantage.

Video
Considerations for HITRUST CSF Certification on AWS

 

Video
Understanding HITRUST CSF Certification on AWS

 

Video
How can AWS reduce the cost to obtain a FedRAMP ATO?

 

Video
How do AWS and Coalfire make FedRAMP authorization easier?

 

Video
Difference between GovCloud and US East/West to achieve FedRAMP

 

Data Sheet
Coalfire extends security of Amazon Web Services (AWS)
FedRAMP

 

Webinar
Automating NIST SP 800-171 Compliance for DFARS Requirements
FedRAMP

 

Webinar
AWS and SOC Reporting, what you need to know
FedRAMP

 

Webinar
FedRAMP on AWS - A Client Story
FedRAMP

 

Webinar
FedRAMP on AWS: What You Need to Know
FedRAMP

 

Webinar
HIPAA on Amazon Web Services
FedRAMP

 

Webinar
PCI on Amazon Web Services: What you need to know
FedRAMP

 

White Paper
PCI on Amazon Web Services (AWS)
FedRAMP

 

White Paper
SOC On Amazon Web Services (AWS)
FedRAMP

 

Video
AWS Compliance - The Shared Responsibility Model

 

Video
Showcase your Enterprise Solutions on AWS

 

Continuous Monitoring in the Cloud

June 01, 2018, Michael Pitcher, Vice President, Technical Cyber Services, Coalfire Federal

I recently spoke at the Cloud Security Alliance’s Federal Summit on the topic “Continuous Monitoring / Continuous Diagnostics and Mitigation (CDM) Concepts in the Cloud.” As government has moved and will continue to move to the cloud, it is becoming increasingly important to ensure continuous monitoring goals are met in this environment.
Read more

 

AWS Certified Cloud Practitioner: A Valuable Certification for Professionals in Non-Technical Roles

May 16, 2018, Jennifer Tonisson, Partner Marketing Manager, Technology & Cloud, Coalfire

Within the past year, AWS unveiled what is arguably one of the best programs they have ever offered to non-technical professionals in the AWS Partner Network (APN): the AWS Certified Cloud Practitioner certification. The program, which is especially valuable for those in sales or marketing roles, doesn’t offer any high-tech products or services for selling or marketing AWS. Instead, it offers a learning path and a certification that is intended to provide individuals with the knowledge and skills necessary to effectively demonstrate an overall understanding of the AWS Cloud.
Read more

 

Cloud Security Governance - Optimizing the Business Benefits of Security in the Cloud

May 02, 2018, Michael Addo-Yobo, Managing Principal, Cyber Risk Advisory, Coalfire

Enterprises are increasingly pursuing the business advantages of migrating technology platforms and services into the cloud environment leveraging one or more of the three main cloud service areas – Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
Read more

 

Sleuthing the Cloud: The Challenges of Forensics in Cloud Environments

April 04, 2018, Robert Meekins, Director, Forensics, Coalfire

More and more companies are embracing Cloud computing for the practicality, efficiency, and economy of outsourcing the housing, maintenance, and monitoring of applications and their associated infrastructure to a third-party provider.
Read more 

 

She Powers Tech

December 01, 2017, Jennifer Tonisson, Partner Marketing Manager, Technology & Cloud, Coalfire

November 28th at the Venetian in Las Vegas, AWS re:INVENT held an important session that could shape the future of technology. The sold-out session, SHE POWERS TECH: Women Supporting Women in Tech, filled a ballroom with 500 women in technology and a few men who were interested in the topic. Sandy Carter, Vice President of Amazon Web Services, spoke about the importance of women supporting women in technology.
Read more 

 

Getting cert-y with all-5 AWS certs 

July 12, 2017, Jeremy Gibbons, AWS Channel Lead, Coalfire

I thought my recent experience achieving all five (5) AWS certs might be helpful to others in the community that are looking to do the same. However, this blog isn’t meant to stand on its own, and I encourage everyone interested in going for all 5 certs to read other blogs posts too.
Read more 

 

AWS Public Sector Summit 2017: Cloud Super Powers and Security

June 16, 2017, Marshall England, Industry Marketing Director, Technology & Cloud

Coalfire recently returned from the Amazon Web Services (AWS) Public Sector Summit, held in Washington, D.C., which addresses some of the most pressing issues today’s leaders face around security, governance and compliance, and more. While Coalfire has attended the show in the past, we were especially amazed at how strong of a conference this year was. The crowd totaled more than 10,000 attendees – up from 50 at the first Public Sector Summit only eight years ago. 
Read more

 

AWS releases PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads

May 24, 2016, Communications Team, Coalfire

In the next step to help customers adopt their platform for PCI, Amazon Web Services (AWS) has released their PCI DSS Quick Start program. The PCI DSS Quick Start program is the next evolution of cloud providers developing tools for rapid deployment of standardized configurations to drive adoption in heavily regulated industries. The Quick Start program was wholly developed by AWS field teams to help provide guidance on reference architectures, configuration and tools to rapidly deploy the guidance.
Read more