We currently have a number of customers in industries that have US Government Compliance Requirements. These requirements include, but are not limited to, NIST 800-171, DFARS 252.204-7012, International Traffic in Arms Regulations (ITAR), Federal Risk and Authorization Management Program (FedRAMP), Federal Information Security Management Act (FISMA), DoD SRG, and other export/control restrictions for customers producing ammunition, weapon systems, hazardous materials, nuclear systems, or other related sensitive data.
At L2L, we take the security of our systems and our customer's data seriously. Our SOC 2 Type 2 + NIST 800-171 compliance program is core to our production operating capabilities. Our strong security program and attention to compliance-related requirements is a key advantage in this industry.
We have been granted access to deploy these customers in the special and separate AWS GovCloud Region (located in the eastern US) that is specifically designed for US customers with these requirements and workloads. This partitioned and physically separate AWS infrastructure has been constructed from the ground up to be a preferred and trusted data center solution for US Government IT systems.
Our hosting in the FedRAMP compliant AWS GovCloud region, combined with our compliance with NIST 800-171 and is how our customers who contract with the US Government maintain their compliance with DFARS 252.204-7012 Safeguarding covered defense information and cyber incident reporting.
The GovCloud Region (set of data centers) is operated by employees who are vetted "U.S. Persons". All AWS customer account holders are also confirmed U.S. Persons. At Leading2Lean, we have also made the commitment to only hire U.S. persons as employees, to further maintain compliance with these government requirements.
For more information about how we have partnered with AWS for data security, please see our article on Physical Data Center Security and the articles in the IT Information section of our support website.
For more information about Data Center Security and US Government Compliance at AWS, please see their AWS Cloud Compliance website.