Updates and new control packages are enabled in Google Cloud Assured Workloads.
Compliance is a continuous process rather than a one-time objective. As the regulatory landscape and your company change, so do Assured Workloads. These are the most recent additions to the collection of software-defined policies and controls that can simplify the process of supporting your compliance needs on Google Cloud.
Presenting Compliance Updates
A collection of software-defined controls known as an Google Cloud Assured Workloads control package is intended to support a compliance standard or rule. Depending on the control objectives of the specific statute, these packages may include measures to enforce data residency, data sovereignty, personnel access limits, and more.
At the folder level of the Google Cloud resource hierarchy, Assured Workloads controls are implemented to provide clients with freedom in building their cloud estate. They frequently add new settings and overall enhancements to the Google Cloud Assured Workloads control packages in response to changes in Google Cloud’s platform services and architecture.
Presently in preview, the new Compliance Updates function lets you check whether the configuration of your Google Cloud Assured Workloads folder is different from the most recent configuration that is available. It also gives you the option to update previously generated AW folders to the most recent version.
Through the console or API, customers can activate Compliance Updates. Customers are strongly encouraged to enable updates immediately in order to make sure they are utilising the most recent iterations of their control packages.
Increasing Area of Control
They are pleased to announce the expansion of Regional Controls packages for Google Cloud Assured Workloads, building on the previous release. More than 20 nations and more than 30 Google Cloud regions now offer Regional Controls in a generic way.
Global organizations of all sizes looking to manage their data residency and compliance obligations in an economical manner while starting with a safe and compliant cloud platform baseline can benefit from Regional Controls.
Increasing the number of supported services
Guaranteed Tasks Area Regulations
It are aware that giving customers precise control over data residency and access through Regional Controls is essential. They are happy to inform that Regional Controls continues to be dedicated to quickly growing the list of supported services, and as of right now, covers over 50 of the most widely used Google Cloud services 45% more than it did a year ago.
Extension of FedRAMP services
In addition, Google Cloud’s mission to provide cutting-edge technology to federal agencies achieved a noteworthy milestone with the launch of over 100 new FedRAMP High authorized cloud services via Google Cloud Assured Workloads compliance control packages. This includes a number of Vertex AI services, Cloud Build and Run, Cloud File store, and robust security features on the cloud infrastructure that is safe by default and by design, such captcha, Cloud Armour, VPC Service Controls, and Cloud Load Balancing services.
Partners’ New Sovereign Controls
Google Cloud is dedicated to assisting their global customers in meeting their requirements for digital sovereignty by collaborating with reliable, local partners. Artificial intelligence (AI) and cloud computing are being adopted by Italian organizations more quickly than ever before, but they must strictly control data and follow local laws.
Recently, they declared that Sovereign Controls by PSN, a new control package developed in partnership with the partners of Polo Strategico Nazionale S.p.A. (“Telecom Italia”), is now generally available. Specifically created for the Italian public sector, Sovereign Controls by PSN offers the features, tools, and technology controls needed to safeguard the government’s sensitive workloads.
Begin using Google Cloud Assured Workloads right now
Continue to strive to give you the tools and controls you require to satisfy a wide range of regulatory, compliance, and sovereignty requirements.
Important aspects of guaranteed workloads
Data domicile
You may manage the areas in which data at rest is stored with Google Cloud, which can help you meet data residency regulations.
You choose your compliance program and establish an environment while setting up Assured Workloads. Google Cloud Assured Workloads limits the regions you can choose for resources you generate in the environment depending on the compliance program you selected using Organization Policy.
These terms apply to the Google Cloud Data Location Service
Control over data access using cryptography
By default, Google Cloud uses encryption both in transit and at rest. Google Cloud users can utilize Cloud Key Management Service to develop, use, rotate, and destroy encryption keys in accordance with their own policies, giving them additional control over the encryption of their data.
With the help of the Cloud External Key Manager (EKM) and Key Access Justifications (KAJ), cryptographic control over data access is accomplished. Depending on which compliance program you choose, Google Cloud Assured Workloads configures the proper encryption services for each workload.
Guaranteed Assistance
Support services are subject to compliance duties for regulated customers. When a support case is raised or technical assistance is required, Assured Support is a value-added service that supplements Premium or Enhanced Support by guaranteeing that only Google employees who meet particular geographic requirements and personnel circumstances will handle the job.
With an extra layer of controls and transparency, Assured Support offers all the features and advantages of Premium or Enhanced Support, including response times, while also helping customers fulfil compliance standards without sacrificing the degree or calibre of support.
Guaranteed Workloads observation
When organization policy changes that go against the established compliance posture, Google Cloud Assured Workloads monitoring monitors your environment in real time and sends out notifications. The monitoring dashboard indicates which policy is being broken and offers guidance on how to fix the issue.