Back

Police Assured Landing Zone (PALZ) blueprints

Police Assured Landing Zone (PALZ) blueprints

Police Assured Landing Zone (PALZ) blueprints

00
Police Assured Landing Zone (PALZ) blueprints

Police Assured Landing Zone (PALZ) blueprints

Status: Live
Security level: Official-Sensitive
Live on platform: 25/09/24
Retired on platform:
Authoring body: Police Digital Service (PDS)
Grading:
Overview and Abstract

The purpose of the Police Assured Landing Zone (PALZ) is to provide a set of reviewed baseline controls that will enable policing to deploy systems onto AWS cloud services. PALZ comes with technical security controls that make the assurance of workloads deployed onto it a simpler process; these controls have been reviewed by PDS DDaT and Cyber.

PALZ is a multi-account AWS cloud environment which has configuration and design rationales that are based on good practices and are assessed in the context of suitability for managing UK Policing data and running UK Policing workloads in the cloud.

The design is based around the concept of a landing zone. This is a foundational environment that provides a baseline for multi-account architecture, identity and access management, governance, data security and network design.

The preferred Identity and Access Management (IAM) method for PALZ is integration with NEP IAM to provide single sign-on (SSO) If NEP IAM is not implemented then an appropriate IAM technical, business and governance process must be implemented to mitigate risks identified in NEP IAM designs.

Category: Enterprise Resource Planning Security Cloud