> However, I wonder if a better approach would be to offer this PaaS but also lower level baselines that make using AWS easier and more secure so it’s not all or nothing to take advantage of their services.
That's what I was working on for a little sub-agency.
You have to start somewhere, with a menu of cloud services that you'll offer to anyone who wants to deploy their app for the federal government to use. You can make that menu selection larger or smaller depending on what services are on the approved list.
Platform One, for example, is PaaS built around Kubernetes deployments. Mine was built using a much larger approved list of services (Kubernetes, Fargate, and so on) that an entity could select to deploy their app/service.
That's what I was working on for a little sub-agency.
You have to start somewhere, with a menu of cloud services that you'll offer to anyone who wants to deploy their app for the federal government to use. You can make that menu selection larger or smaller depending on what services are on the approved list.
Platform One, for example, is PaaS built around Kubernetes deployments. Mine was built using a much larger approved list of services (Kubernetes, Fargate, and so on) that an entity could select to deploy their app/service.