COGNIZANT AWS CLOUD SERVICES HIPAA-COMPLIANT CLOUD SOLUTIONS

GAIN HIPAA-COMPLIANT CLOUD SOLUTIONS WITH COGNIZANT AND AWS

AT A GLANCE

Healthcare organizations are under

pressure to adopt cloud to deliver

better care at lower costs with greater

flexibility, scalability and reach.

However, given the mandate to

protect patient health information

with a robust value-chain process

while reducing the cost and enhancing

business outcome at the same time

can become a complex challenge to

healthcare industry while adopting

cloud.

With Cognizant, healthcare

organizations can now adopt powerful

cloud solutions to reach these goals

while enhancing their security and

compliance.

Cognizant offers a fully managed

HIPAA-compliant cloud solution

hosted on AWS’ highly scalable,

secure and readily available

architecture.

HIPAA-COMPLIANT CLOUD SERVICES

HIPAA-compliant Cloud solution uses all of AWS HIPAA-eligible

services along with few supporting services included in the AWS global

infrastructure. Leveraging Cognizant’s HIPAA cloud blueprint, this

agile platform enables clients to accelerate their business agenda by

rapidly developing and deploying their mission-critical applications in

a compliant environment.

Cognizant’s HIPAA-compliant cloud ensures the security,

confidentiality and compliance of patient information and maintains

the privacy of health insurance information even between job

changes. Well-defined uniform and stringent security standards are

maintained for electronic transmission of administrative and financial

data specific to patient health information.

KEY PLATFORM COMPONENTS

• Compute and Storage: Amazon EC2 instances with data kept in

encrypted Amazon EBS volumes

• Elastic Load Balancer: Secure using HTTPS-based or TCP/

SSL-based end-to-end communication

• Web Tier: Traffic from external world is secured through public

Elastic Load Balancer (ELB) using https and external certificate is

signed by CA

• App Tier: Placed behind ELB with only https listener and SSL

Powered by Cognizant Cloud Steps Transformation Framework

certificates to keep the communication channel

encrypted completely

• DB Tier: Amazon Relational Database Service (RDS) used

with MySQL provides communication with DB instance

over SSL channel and Oracle-native network encryption

• Backup: Both client and server side encryption for PHI

using the Amazon S3 service

• Monitoring and Logging: Built-in AWS tools and partner-

developed solutions for extensive analysis of logs,

reporting and alerts

• Security Tools and Frameworks: Industry-proven partner tools leveraged by Cognizant’s security

framework, tightly integrated with the blueprint

• Auditing and Certification: Audited and certified by

leading third party security experts of the client’s choice

• Fully Managed: Industry-proven, best-in-class cloud

management and orchestration platform powered by

Cognizant’s Cloud360 solution

BENEFITS AT A GLANCE

• Cognizant’s Blueprint, Tools and Assets: Rapid

implementation with highly automated Cognizant

Cloud Steps framework and HIPAA cloud blueprint

for quick time to market

• Privacy Protection: A privacy-protected platform

that leverages robust key management and

encryption services, including ways to detect and

prevent accidental and intentional misuse of PHI

• Expert Assurance: Get certified by independent

HIPAA specialists as an optional service

• Retain Control on PHI: HIPAA rules enable checks

on covered entities and allow patients to control the

access and usage of their personal information

• Business Tenacity: Safeguard and protect health

information without affecting business cycles

THREE SAFEGUARDS BY HIPAA-COMPLIANT AWS

CLOUD*

*As defined in Health Insurance Portability and Accountability Act (HIPAA)

APPROACH TO ACHIEVE A HIPAA-COMPLIANT

CLOUD

COGNIZANT’S AWS EXPERTISE*

• 1500+ Trained AWS practitioners

• 900+ Certified AWS professionals

• 180+ Clients transformed to AWS

• 40+ Transformation blueprints

CASE STUDY

Rapid implementation of HIPAA cloud for a U.S. based Healthcare exchange

Cognizant provided end-to-end cloud architecture and

solution design for a U.S. based Healthcare exchange in

three months based on HIPAA requirements and security

measures thus ensuring compliance and adherence to

statutory and regulatory requirements.

Physical Safeguards

Facility access controls - Visitor logging and

video surveillance

Workstation security and controls

Device and media controls

Dual-factor authentication

Physical Safeguards

Sign Business Associate Agreement (BAA) with all

partners

Bring all Managed Services Providers (MSP) under

data security

Processes and procedures

Data leak prevention system

Implementation of yearly review of changes

Technical Safeguards

Access control with unique ID and Password

Multi-factor authentication

Encryption

Comprehensive backup and disaster recovery

plan

Secured transmission

*As of June 2017

Amazon EC2 Amazon RDS*

Amazon EMR AWS Snowball

Amazon DynamoDB

Amazon EBS

Elastic Load Balancing

Amazon Redshift

Amazon S3

Amazon Glacier

Amazon API GatewayAWS Direct Connect

AWS DMSAmazon Aurora

Amazon VPCAmazon Cloudfront

AWS ShieldAWS WAF

AWS

*Selected databases only

AmazonCloudWatch

AWSCloudTrail

AWSCloud

FormaltionAWS

ConfigAWSKMS

AWSIAM

+IPs and Assets

Blueprints

Pre-packaged apps, Commercial

Off-The-Shelf (COTS) apps, Custom apps

etc.

Accelerators

Build factory, Application migration

factory, Partner tools

Cloud governance, Application migration

foundry, Cloud management fabric,

SLAs, Monitoring & billing, Integration

with on-premise resources

Transformation Services

Cloud Steps Transformational Framework

Managed Services

CLOUDPAYBACKS

TIME TOMARKET

COMPLIANCE

DIGITALBUSINESSAGENDA

ACCELERATE YOUR BUSINESS WITH AWS - COGNIZANT PARTNERSHIP Cognizant is a Premier Consulting Partner for AWS. Choose Cognizant and AWS to gain industry leading partners with proven solutions. We will blend our system integration capabilities, accelerators, frameworks, and toolkits with our advisory, implementa-tion and managed services along with best-in-class AWS cloud computing technologies and services to deliver a reliable, flexible cloud infrastructure that will drive business acceleration and transform your organization.

For more information about how your healthcare organization can benefit from the speed, agility and flexibility of cloud solutions while still maintaining and even enhancing HIPAA compliance, contact AWSCloudCoE@cognizant.com

VALUE PROPOSITION OF AWS SERVICES AND COGNIZANT SERVICES

*Services list as of June 2017

World Headquarters

500 Frank W. Burr Blvd.Teaneck, NJ 07666 USAPhone: +1 201 801 0233Fax: +1 201 801 0243Toll Free: +1 888 937 3277

European Headquarters

1 Kingdom Street Paddington Central London W2 6BD EnglandPhone: +44 (0) 20 7297 7600 Fax: +44 (0) 20 7121 0102

India Operations Headquarters

#5/535 Old Mahabalipuram RoadOkkiyam Pettai, ThoraipakkamChennai, 600 096 IndiaPhone: +91 (0) 44 4209 6000Fax: +91 (0) 44 4209 6060

© Copyright 2017, Cognizant. All rights reserved. No part of this document may be reproduced, stored in a retrieval system, transmitted in any form or by any means, electronic, mechanical, photocopying, recording, or otherwise, without the express written permission from Cognizant. The information contained herein is subject to change without notice. All other trademarks mentioned herein are the property of their respective owners.

ABOUT COGNIZANT

Cognizant (NASDAQ-100: CTSH) is one of the world’s leading professional services companies, transforming clients’ business, operating and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant is ranked 205 on the Fortune 500 and is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com or follow us @Cognizant.