It’s Official: RevGen is a Great Place to Work
For our second year, RevGen has been certified as a "Great Place to Work"
Read More About It’s Official: RevGen is a Great Place to WorkSecurity and compliance in the cloud
Author: David Pratt
Cloud platforms enable modern businesses to embrace agility and innovate. They allow businesses to experiment; quickly try out new ideas; and scale rapidly when an idea takes off. Just as importantly, their usage-based payment model makes it easy to decommission the ones that don’t work. Try new things, see what works, and fail fast: the mantra of agile businesses.
In the past, compliance and privacy issues slowed innovation in the healthcare industry. That is changing. Offerings from all of the large cloud vendors now support HIPAA (Health Insurance Portability and Accountability Act) and even HITRUST (Health Information Trust Alliance Common Security Framework), thus allowing companies to quickly assemble secure solutions from off-the-shelf components. It is easier than ever to build secure, compliant cloud applications that protect sensitive personal health information.
Security and compliance are built into all of the major cloud platforms, allowing secure, scalable, and manageable products to be built on Microsoft’s Azure, Google Cloud Platform (GCP), Amazon Web Services (AWS), and many of the other cloud platforms. Additionally, with interoperability between the platforms increasing, a best-of-breed approach leveraging components from two or more platforms is possible. However, for this article we are focused on our recent experience using AWS for a healthcare startup.
Security, scalability, and manageability are critical to building a modern application. The following architecture leverages AWS components that incorporate all three attributes. It reflects RevGen’s experience building solutions for clients across a variety of industries, with a focus on technologies that are HIPAA- compliant.
Data storage is at the core of most products and AWS offers quite a few ways of persisting data needed by an application. We’ve found these solutions work well and are HIPAA compliant:
Serverless solutions free organizations and engineers from managing servers and frameworks and simplify compliance.
Managing solutions and data is every bit as critical to compliance as having secure technology building blocks. AWS offers a suite of solutions manage the deployment of components and monitor data access and usage.
Determining where and how to build applications can be challenging, especially when managing compliance with new and existing regulations. You need compliant technologies, well-designed architecture, and cloud technology aligned with your business objectives. When you pull this all together, the possibilities for innovation are endless.
Noah Benedict leads RevGen’s Digital Enablement Practice.
David Pratt is a Senior Architect at RevGen Partners.
Get the latest updates and Insights from RevGen delivered straight to your inbox.