Announcing the AWS Blueprint for Ransomware Defense

Announcing the AWS Blueprint for Ransomware Defense

In June 2023, I had the opportunity to co-author the Announcing the AWS Blueprint for Ransomware Defense. The AWS Blueprint for Ransomware Defense provides a mapping of AWS services and features as they align to aspects of the Center for Internet Security (CIS) Critical Security Controls (CIS Controls). This information can be used to help customers assess and protect their data from ransomware events.

In April of 2021, the U.S. government launched the Ransomware Task Force (RTF), which has the mission of uniting key stakeholders across industry, government, and civil society to create new solutions, break down silos, and find effective new methods of countering the ransomware threat. The RTF has since launched several progress reports with specific recommendations, including the development of the RTF Blueprint for Ransomware Defense, which provides a framework with practical steps to mitigate, respond to, and recover from ransomware. AWS is a member of the RTF, and we have taken action to create our own AWS Blueprint for Ransomware Defense that maps actionable and foundational security controls to AWS services and features that customers can use to implement those controls. The AWS Blueprint for Ransomware Defense is based on the CIS Controls framework.

Read more

Extending Security Ownership Across Your Organization: A conversation with Megan O’Neil, Principal Security Solutions Architect at AWS

Extending Security Ownership Across Your Organization: A conversation with Megan O’Neil, Principal Security Solutions Architect at AWS

In this chat with AWS enterprise strategist, Clarke Rodgers, Megan discusses the benefits of extending security ownership beyond the security department. Here at AWS, identifying vulnerabilities isn’t just the responsibility of the security team — every employee is empowered and expected to report potential security issues. In Megan’s own

By Megan O'Neil