Overview
- Customer Profile: A prominent healthcare software provider in the United States
- Industry Challenge: Managing cloud security in the healthcare industry
- HTCD Solution: AI-driven security insights and prioritization with HTCD’s SaaS and AWS Security Lake
- Results: Enhanced security posture with 300+ critical and high-risk findings prioritized for remediation
Background
The healthcare industry has rapidly adopted the cloud, with a significant percentage of healthcare firms storing their data on the cloud. This trend continues to grow upward, with Verified Market Research reporting that the healthcare cloud computing market is set to see an increase in market size from its 2023 valuation of $15.42 billion to a staggering $42.22 billion by 2031 at a compound annual growth rate (CAGR) of 14.80%. However, as more and more data makes its way to the cloud, the attack surface grows that much bigger for malicious actors looking to steal that data. The numbers bear out too:
- Per the 2024 Ponemon Healthcare Cybersecurity Report, 92% of organizations experienced a cyberattack in the past year—a 4% increase over the same metric recorded in 2023.
- No surprise that the number is so high, considering that according to the HIPAA journal, only 50% of all healthcare organizations regularly conduct cybersecurity audits.
- The healthcare industry is also paying a hefty price for this lax approach, with the World Economic Forum reporting that a 13-year trend of the healthcare industry clocking the most expensive data breaches continued in 2023, with an average cost of $10.93 million per breach, nearly double of the next highest industry on the list.
Taking the state of healthcare in the cloud into consideration, the challenge for this particular client was twofold: addressing the growing volume of security data and closing the cybersecurity talent gap to efficiently manage and mitigate risks. The client, a leading healthcare software provider, needed a solution that provided actionable insights into their security posture on AWS and prioritized risks to align with healthcare compliance standards.
Solution
HTCD worked closely with the client to deploy AWS Security Lake, integrating a suite of services to enhance security monitoring and reporting:
- Amazon GuardDuty
- Amazon Inspector
- Amazon Config
- IAM Access Analyzer
- CloudTrail (Management and Lambda data events)
- Route 53
- Security Hub
- VPC Flow Logs
HTCD enabled Security Lake in all AWS-supported regions for full-scale monitoring. Upon activating AWS services, the client signed up for the HTCD SaaS solution, allowing HTCD’s AI-powered tool to analyze and prioritize security findings without retaining any of their data. The setup and integration were completed in under 15 minutes, highlighting HTCD’s ease of deployment.
Project Outcomes
After deploying AWS Security Lake, the HTCD SaaS generated approximately 900 security findings. HTCD’s AI-driven prioritization then reclassified these findings into actionable categories, providing the client with a roadmap for remediation:
- 3 Critical Findings
- 235 High
- 50 Medium
- 548 Low
- 64 Informational
This categorization enabled the client to efficiently tackle the most urgent threats first, bolstering their security by addressing high-risk issues ahead of less critical ones.
Lessons Learned
Given that the client had not previously utilized AWS security services, HTCD had to illustrate the value of integrating AWS Security Lake and security tools like GuardDuty and Inspector. By emphasizing the potential costs of a security breach, particularly within the healthcare sector, HTCD successfully demonstrated the importance of robust security monitoring. Additionally, HTCD’s streamlined onboarding process proved essential, enabling quick setup and visibility of critical data within the HTCD Cloud Security SaaS platform.
Conclusion
HTCD’s integration of AWS Security Lake and AI-powered prioritization enabled this healthcare provider to transform its security operations, focusing remediation efforts on critical and high-risk issues. By leveraging HTCD’s SaaS, the client achieved a proactive security stance aligned with healthcare compliance requirements, demonstrating the combined capabilities of AWS’ native security tools and HTCD’s AI-first Cloud Security & Compliance solution. You too can experience the AWS + HTCD advantage, request a demo today, or visit our AWS Marketplace listing to sign up.
Also read – Case Study: How YBIntel Elevated Its Cloud Security Operations with HTCD and AWS-Native Security
