Kiro loves regulated workloads
Brian Beach
Tech Lead
If you build software for the government, you already know the drill. Compliance requirements, restricted networks, controlled environments—and yet the code still needs to ship. Today, we're bringing Kiro to the AWS GovCloud (US) Regions, so you can use the same agentic AI development experience your colleagues in commercial regions have been using, inside the environments your work actually lives in.
Why this matters
Developers working in regulated environments deal with constraints that most of the industry never thinks about. You might be working on a network with no public internet access. Your tooling choices are limited by what's been authorized. And yet the problems you're solving are just as complex—often more so—than what's happening in the private sector. You deserve modern dev tooling that meets you where you are. That's why we built Kiro to work inside the environments your code actually lives in—no compromises on capability, no workarounds for compliance.
Kiro is an agentic IDE and CLI that helps you go from idea to production with spec-driven development. It turns prompts into detailed specs, then into working code, docs, and tests. Its agents help you automate the tedious stuff—generating documentation, writing unit tests, tackling complex debugging sessions. With native MCP (Model Context Protocol) support, Kiro connects to your documentation, databases, APIs, and other enterprise resources.
All of that now works in the AWS GovCloud (US) Regions.
Regions and authentication
Kiro was already available in US East (N. Virginia) and Europe (Frankfurt). With this launch, we're adding:
AWS GovCloud (US-West) — us-gov-west-1
AWS GovCloud (US-East) — us-gov-east-1
AWS GovCloud (US) region access, along with all region selection, is available through enterprise billing.
Private connectivity for restricted networks
Many government development environments operate on networks with limited internet access. Kiro in AWS GovCloud (US) supports private endpoints over VPN or direct connect, enabling developers to use the full capabilities of the IDE and CLI without internet connectivity. Traffic is routed privately, supporting the network isolation requirements common in government and defense environments.
Security and compliance
With this launch, Kiro begins the process of pursuing FedRAMP High and the DoD Cloud Computing Security Requirements Guide (CC SRG) authorization within the AWS GovCloud (US) environment. The AWS GovCloud (US) deployment incorporates several security measures designed to support organizations with elevated compliance needs:
No data collection for service improvement. Content collection for service improvement—including prompts, responses, and generated code—is disabled by default for the AWS GovCloud (US) Regions, consistent with the privacy standards of our enterprise billing plans.
Encrypted cross-region inference. For customers in AWS GovCloud (US), requests stay in AWS GovCloud (US). Kiro relies on cross-region replication to utilize compute across AWS GovCloud (US-East) and AWS GovCloud (US-West).
Enterprise authentication only. Access to Kiro in AWS GovCloud (US) Regions requires authentication through AWS IAM Identity Center. Individual login methods such as GitHub, Google, and Builder ID are not available.
Get started
We built Kiro to help developers move faster without sacrificing quality. That shouldn't depend on which network you're sitting on. If you're building for the government, we're glad you can finally use it where you need it. For more information, check out the Kiro documentation and the AWS GovCloud (US) documentation.