aws – CIO.works

12 AWS Cloud Security Best Practices for 2026: Cloud Security Guide

The article outlines 12 best practices for securing AWS cloud environments in 2026, emphasizing continuous, risk-based governance tailored to dynamic cloud workloads. Key recommendations include enforcing least-privilege identity access, continuous asset discovery, default encryption, API security, network segmentation, automated vulnerability management, container security, and securing AI workloads, all within the context of the AWS shared responsibility model where customers manage identity and configuration security. These practices, supported by unified platforms like Qualys TotalCloud™, aim to reduce exposures, accelerate threat detection and remediation, and maintain continuous compliance in complex cloud environments.

https://blog.qualys.com/product-tech/2026/04/09/1aws-cloud-security-best-practices-guide

New Compliance Guide Available: ISO/IEC 27001:2022 on AWS

By CIO / Blog / iso 27001, isms, aws, compliance

AWS has released a new compliance guide titled “ISO/IEC 27001:2022 on AWS,” which offers practical guidance for organizations implementing an Information Security Management System (ISMS) using AWS services. The guide helps align cloud environments with the ISO/IEC 27001:2022 standard, detailing how to integrate AWS security controls, manage governance and risks, and prepare for certification audits by leveraging AWS security, monitoring, and automation capabilities.

https://aws.amazon.com/blogs/security/new-compliance-guide-available-iso-iec-270012022-on-aws-compliance-guide/

Amazon Launches Its ‘sovereign’ Cloud in Europe and Plots Expansion

By CIO / Blog / aws, cloud, EU, compliance

AWS CEO Matt Garman announced Amazon's launch of a “European Sovereign Cloud,” described as a significant investment aimed at complying with EU regulations. This cloud service will be distinct and managed locally, addressing concerns over data sovereignty. Amazon plans to invest 7.8 billion euros in this initiative by 2040 and is expanding it to several EU countries. Despite regulatory scrutiny, AWS remains a major player in Europe's cloud market.

https://www.cnbc.com/2026/01/15/amazon-sovereign-cloud-europe-expansion.html

AWS Raises GPU Prices 15% on a Saturday

By CIO / Blog / aws, cloud

AWS increased GPU prices for EC2 Capacity Blocks by 15%, raising rates for major instances without prior warning on a Saturday. This shift, noted in January 2026, challenges the established expectation of decreasing cloud costs and raises concerns about future pricing trends, impacting companies reliant on machine learning workloads. Analysts speculate on a broader trend amid global resource constraints, potentially affecting other AWS services. Competitors may leverage this price hike as a marketing advantage.

https://www.theregister.com/2026/01/05/aws_price_increase/

How Amazon Finds Its Cybersecurity Weak Spots

By CIO / Blog / aws, cybersecurity

Amazon avoids typical cybersecurity benchmarks and instead monitors the introduction of new and old devices in its network in real time, believing these are key to spotting risks. The company leads with meticulously detailed metrics instead of using averages or simple dashboards and shares its findings with a specialized security board committee. This approach, guided by Chief Security Officer Stephen Schmidt, emphasizes outlier risks and continuous oversight, setting Amazon apart from peers.

https://www.wsj.com/articles/how-amazon-finds-its-cybersecurity-weak-spots-f932e836

Strengthen AWS Security Posture With Robust Infrastructure as Code Strategy

By CIO / Blog / aws, cybersecurity

AWS emphasizes security via shared responsibility and promotes Integration of security within DevOps through Infrastructure as Code (IaC). ControlMonkey enhances AWS Control Tower by automating security workflows and ensuring compliance, particularly with PCI DSS for payment data. It offers proactive security measures, centralized monitoring, and a comprehensive audit trail, enabling organizations to maintain a strong security posture while fostering developer productivity.

https://aws.amazon.com/blogs/apn/strengthen-aws-security-posture-with-robust-infrastructure-as-code-strategy/

How Can CIOs Keep Operations Going During an Outage?

By CIO / Blog / aws, cybersecurity

A major AWS outage hit thousands of companies, but only those using the affected US-EAST-1 data center. This highlighted the risks of depending on a single cloud provider. IT leaders stress the need for redundancy—such as backups and failovers—to reduce the operational impact of outages, particularly for mission-critical systems. However, there are financial trade-offs: not every system needs full redundancy, and organizations must prioritize based on risk, sector, and potential impact. While using a single provider can be efficient and drive innovation, CIOs must still prepare for outages by architecting for failure within their provider’s ecosystem, auditing for high-impact dependencies, and ensuring they have strong contingency and recovery plans. Highly regulated or always-on industries require higher resilience, but in all cases, informed risk management is key.

https://www.informationweek.com/cloud-computing/when-a-provider-s-lights-go-out-how-can-cios-keep-operations-going-

AWS in 2025: The Stuff You Think You Know That’s Now Wrong

By CIO / Blog / aws

AWS has evolved significantly over nearly two decades, now featuring capabilities like live migration of EC2 instances, read-after-write consistency in S3, improved Lambda performance, and more reliable DynamoDB. Key changes include the removal of EC2-classic, adjustments in networking costs, introduction of cost-saving features, and enhanced IAM for authentication. Many legacy assumptions about AWS services are now outdated, reflecting a more durable and user-friendly platform.

https://www.lastweekinaws.com/blog/aws-in-2025-the-stuff-you-think-you-know-thats-now-wrong/