1

HIPAA Compliance: Simple Steps to the Healthcare Cloud

HIPAA Compliance: Simple Steps to the Healthcare Cloud

• Moderator

• Frank Condon, VP Strategic Alliances, HOSTING

• Panel Members

• Lance Goudzwaard, CCO, 3t Systems

• Johan Hybinette, CISO, HOSTING

• Sean Bruton, VP Product Management, HOSTING

2

Welcome to Our Webcast!

• Healthcare Cloud Trends

• Cloud Security & HIPAA Compliance

• It’s All About The App

• Case Study

Agenda

4

Healthcare and the Cloud

“Why should we use the Cloud?”

• High costs, low rankings

• Reduced reimbursements

• Increasingly complex chronic conditions

• Lack of internal skills

5

The Healthcare Cloud: Past

“Ok, I get it, how do I leverage the Cloud?”

Now the conversation is about:

• Security

• Risk

• Availability

• Support

6

The Cloud: Present

“What are the possibilities?”

• Creating agility to flex business models

• Ubiquitous and secure data sharing

• Addressing Security & Compliance

• Shifting chronic care from hospital to home

• Harnessing “big data” for well being and health

Accenture

A New Era for the Healthcare Industry-

Cloud Computing Changes the Game

7

& the Future

8

& the Future

The Healthcare industry can save up to

$450 billion by use big data analytics and

patients make appropriate lifestyle choices

saving 12-17% of the 2.6 trillion US

healthcare spend

- McKinsey and Company

9

& the Future

1. Back ups and Recovery

2. Hosting Operational Applications and Data

3. Hosting of Archived Data

- HIMSS Analytics

10

Simple Steps to the Cloud

• I cannot afford being compliant

• I am too busy to become compliant

• I don’t know how to become compliant

• Breaches only happens to larger

organizations

11

HIPAA Misconceptions

• Security/compliance is table stakes

• So are:

• Built in high availability

• Testable recovery strategies

• Protection against human error and data loss

• Around the clock monitoring and response

• Ongoing performance management

• Real SLAs and guarantees to back it all up

12

HIPAA isn’t everything

• Security/compliance is table stakes

• So are:

• Built in high availability

• Testable recovery strategies

• Protection against human error and data loss

• Around the clock monitoring and response

• Ongoing performance management

• Real SLAs and guarantees to back it all up

13

HIPAA isn’t everything

14

Managed Cloud Foundation

Availability & Recovery Services

Security & Compliance Services

Application Support Services

Professional Services

Healthcare Application Lifecycle Support

Healthcare Application Lifecycle Support

15

Data Collection

• Infrastructure Utilization Metrics (CPU,

Memory, Disk, Network)

• IT Goals/Drivers

• Business Goals/Drivers

Analysis

• Compare usage to industry “best-

practices”

• Evaluate alignment of infrastructure to

IT & business goals/drivers

• Evaluate alternative architectures

Design

• Infrastructure sizing recommendations

• Virtualization roadmap

16

Operational Alignment

• 20 years as the CEO for large medical

groups does not qualify me to run a

data center

17

Case Study – Introduction

& =

• What went well

• What went poorly

• What I would recommend to my fellow

CEOs

18

Case Study – Learn from My Experience

• The changing healthcare landscape

• Where does the cloud fit?

19

Case Study – Takeaways

Q&A

20

Moderator

• Frank Condon, VP Strategic Alliances, HOSTING

Panel Members

• Lance Goudzwaard, CCO, 3t Systems

• Johan Hybinette, CISO, HOSTING

• Sean Bruton, VP Product Management, HOSTING

Thank you!

21

Be on Solid GroundEven in The Cloud

Click here to view our on-demand webinar!