AWS

Peter Male, Business Development Lead, writes a blog on AWS and their new Availability Zone.

AWS recently announced the arrival of their 50th Availability Zone (AZ – which is defined as a data centre or centres that have separate risk profiles to other AZ’s, which work together to form a region e.g. London).

What’s surprising is not that AWS has opened a new AZ, we’re more accustomed to them announcing whole new regions at this point, but where this new AZ is – London.

The Meltdown & Spectre CPU vulnerabilities will force all security-conscious organisations to patch their servers. This is something that has already been completed by AWS. While the speed of reaction to threats like these is a good reason to host your infrastructure on the Cloud, this issue also highlights another Cloud benefit which is that this change will result in a 5 – 30% reduction in server performance which can be easily fixed in a Cloud environment but is really hard to handle on premise.

As a Gold Sponsor of the AWS Transformation Day – Public Sector on Monday 30 October, we’re keen to ensure that everyone gets the most out of the day.

The Department for Communities and Local Government’s (DCLG) purpose is to support the creation of great places to live and work, and to give more power to local people to shape what happens in their area. In 2015, it chose Arcus Global to build a secure platform on AWS for hosting its applications. By 2016, that platform was hosting a series of applications up to ‘Official Sensitive’ level and DCLG wanted to move more of its infrastructure to AWS.

Nourish Care is a healthcare focused start-up that provides novel software based solutions designed to improve the lives of people who need care. Their tools help carers to plan, record, report and coordinate care to meet the needs of the individual.

“The NHSBSA’s engagement has been a positive collaborative experience with Arcus Global allowing knowledge, experience and ideas to be shared freely. Arcus have enabled the NHSBSA to bolster the security of our Cloud Platform with the knowledge and experience that they provide. Arcus also provide confidence and ensure the platform remains as secure as possible, which also has enabled the NHSBSA to become exemplars of cloud hosting within the UK Healthcare sector.”
Chris Suter, Lead DevOps Engineer, NHSBSA

If security is important to you then you’ll want an external penetration test for your infrastructure. The work that Arcus does with central government and NHS means that we have been tested by several ‘experts’ but the truth is that many of these don’t understand the Cloud and so make some recommendations that are irrelevant while missing larger issues. Recently I met a penetration test company that understands the Cloud but before I come to that, let me explain about penetration tests.

As an AWS Managed Services Provider (MSP) security is a key area of focus for Arcus and something our customers expect. The National Cyber Security Centre (NCSC) has created a set of 14 cloud security principles that public sector organisations should be aware of, and adhere to, when selecting cloud services and solutions/service providers. This blog explores how those principles are met.