Starting your development from an already DISA STIG Hardened image will ensure compatibility with the DoD standards. Either build your software on this machine image or use it for testing.
With nothing extra installed you can customize your distribution to fit only your needs, reducing your overall software baseline and the amount of patching you will have to do when in operations.
When deployed to Gov Cloud, East, or West AWS zones you can rest assured that your Virtual Machine is running in a FedRamp certified organization. See more at https://aws.amazon.com/compliance/fedramp/
This is a minimal CentOS install that has been hardened using the openscap security guide, also used for DoD DISA STIG configurations, for CentOS7, which can be viewed here https://github.com/openscap/scap-security-guide. Only the AMI EC2 tools, Ruby, and VIM have been installed on top of the CENT provided minimal install. Additionally the US Government security banner has been added using the banner located at https://github.com/RedHatGov/classification-banner. This Amazon Machine Image is a perfect starting point for testing your applications on a hardened OS.
Try it out today by going to our AWS Market Place Listing.