This whitepaper is for historical reference only. Some content might be outdated and some links might not be available.
AWS Advantages for Secure Workloads
The AWS Cloud provides several advantages if you want to deploy secure workloads using a CDS. The AWS Cloud has a cloud scale CDS service to support cloud-to-cloud communications. This service is accredited as part of the AWS infrastructure services, and allows for fast onboarding and familiar API that work with your existing cloud capabilities. The AWS Cloud also supports a myriad of secure interconnect options to allow your on-premise services and data to take advantage of cloud capabilities and scale.
Cost
Pay only for the storage and compute consumed for your workloads. Amazon S3 offers multiple storage classes you can use to control the cost of storage objects, based on the frequency and availability required at the object level. Eliminate the costs associated with data duplication, data fragmentation, system maintenance, and upgrades. Provision compute resources for specific jobs and stop paying for the compute resources when the jobs are complete.
Elasticity
Scale as workload volumes increase and decrease, paying only for what you use. Reduce large capital expenditures by no longer guessing what levels of storage and compute are required for your workloads. The ability to scale resources is not limited to just meeting demand. Workload owners can also use the scalability value of AWS by scaling up compute resources for time-sensitive jobs.
Purpose-Built Infrastructure
You tailor AWS purpose-built tools to your requirements and scaling and audit objectives, in addition to supporting real-time verification and reporting with internal tools such as AWS CloudTrail, AWS Config, and Amazon CloudWatch. These tools are built to help you maximize the protection of your services, data, and applications. This means as an AWS customer, you can spend less time on routine security and audit tasks, and focus on proactive measures that can continue to enhance security and audit capabilities of your AWS environment.
Auditability
AWS manages the underlying infrastructure, and you manage the security of anything you deploy in AWS. As a modern platform, AWS enables you to formalize the design of security, as well as audit controls, through reliable, automated, and verifiable technical and operational processes that are built into every AWS customer account. The increased automation & visibility capability available in the AWS Cloud can help you move to a continuous assurance model rather than relying on point-in-time assessments.
Security and Governance
The AWS Compliance Program helps you to understand the robust controls in place at AWS to maintain security and data protection in the cloud. As systems are built on top of AWS Cloud infrastructure, compliance responsibilities are shared between AWS and the customer. By tying together governance-focused, audit-friendly service features with applicable compliance or audit standards, AWS Compliance Enablers build on traditional programs. This helps you establish and operate in an AWS security control environment. The IT infrastructure that AWS provides is designed and managed in alignment with security best practices and numerous security accreditations.
