Company summary
This technology company focuses on developing solutions that are changing the face of healthcare for health plans, pharmacy benefit managers (PBMs) and most importantly, for patients.
Its team of pharmacy industry experts use technology to help reduce pharmacy spending waste and create a more efficient way to deliver patients the life-saving pharmacy care they need. Its knowledge of drug pricing, coupled with its pre-adjudication platform provides pharmacy control and enables the lowest cost possible for plans and patients.
The Challenge
Seeking a reliable networking platform for healthcare data
The company needed to build and manage a platform that could reliably connect with its healthcare partners and customers while meeting all ongoing security requirements. With a limited staff devoted to development operations, it didn’t want to use internal resources to build and manage the complex infrastructure required.
It sought to establish and maintain a reliable connection over AWS Direct Connect with a key healthcare partner.
The partner had an 18-second service level agreement (SLA) for approving prescriptions. To meet that requirement, it required an appliance on Amazon Elastic Compute Cloud (Amazon EC2) for routing public IPs over AWS Direct Connect. To meet customer security and availability requirements, the company needed an active-active network configuration, using multiple nodes that are simultaneously active and operational, with each node processing requests and handling user traffic independently. Additional requirements included 100% uptime and low latency. Due to the partner’s use of Amazon Web Services (AWS), the company required a consulting partner familiar with AWS networking as well as network address translation (NAT) and common routing and protocols.
Due to the private nature of healthcare information, it also required secure functionality to provide protected data so its application could share information with other pharmacies. It required secure access for its proprietary tools for insurance education to scan insurance cards, gather plan information, and recommend the best medication or service.
The Solution
Building and managing a secure, reliable platform to transmit healthcare data
To enable the partner to meet its SLA, CloudHesive built and managed a reliable platform to transmit healthcare data securely in the cloud.
CloudHesive worked with the company to set up and manage a single virtual appliance in one AWS Region to provision an IP to its’ partner. CloudHesive updated the configuration to be High Availability with a total of eight Cisco Cloud Services Router (CSR) appliances across two Regions, us-east-1 and us-east-2. CloudHesive then set up the company’s Transit Network Account that uses Transit Gateways, Cisco Cloud Service Routers, and AWS Direct Connect to enable communication between their Amazon Elastic Kubernetes Service (Amazon EKS) clusters and the client.
The traffic is sent from the Amazon EKS clusters through the shared Transit Gateway in the shared Transit Network account to a pair of Cisco CSRs. This provided network address translation (NATG) of the private IP address to a static public IP that is allowed through the client’s firewall. Since the client’s network only accepted traffic from allowed public IP addresses, the CSR provided a static public IP address that would otherwise not be available for use.
The benefits
Gaining a secure, maintenance-free cloud platform with CloudHesive managed services
The solution that CloudHesive built and manages for the company provided a High Availability connection that enabled it to reliably meet its 18-second SLA while providing SOC 2 security for secure patient data. The company’s application now can securely share data with pharmacies and can ensure that the best medication or plan is being offered to end users.
With CloudHesive’s ongoing security and monitoring services of the platform, the company is able to focus on its core competency of developing its software and deliver its solutions in the cloud without a single IT or security expert on staff. CloudHesive provides end-to-end management of security tools and processes, providing weekly reporting and audits, as well as managing patching, backups, and general platform oversight.
Services that drive success
Managed security services (check any used and add additional)
- End point security, intrusion detection, Encryption as a Service (EaaS), centralized log management
- End-to-end management of security tools and processes
- Weekly reporting and assistance with compliance audits
Managed services
- Complete, end-to-end monitoring and management of the environment
- Managed patching, backups, and oversight
- Governance of the production environment
Devops
- Deployment of Amazon Virtual Private Cloud (Amazon VPC), Amazon Elastic Compute Cloud (Amazon EC2), and Amazon Elastic Block Store (Amazon EBS)
- Deployment of AWS Transit Gateway
- Deployment of AWS Direct Connect
- Integration with Cisco CSR1000V AMI
Customer benefit summary
- Met customer’s 18-second SLA
- Ensured security compliance
- Focus on software development rather than platform management
Technologies used
- Amazon Virtual Private Cloud
- Amazon Elastic Compute Cloud
- Amazon Elastic Block Store
- AWS Transit Gateway
- AWS Direct Connect
- Amazon Elastic Network Interface
- Elastic IP address
Third-party technologies used
- Cisco CSR1000V AMI
Industry
Healthcare
Segment
Private
Region
NAMER
