Case study Situation You are the CIO of BigPharma Healthcare. The ICT landscape of BigPhrama Healthcare...
Fantastic news! We've Found the answer you've been seeking!
Question:
Transcribed Image Text:
Case study Situation You are the CIO of BigPharma Healthcare. The ICT landscape of BigPhrama Healthcare is their on-premise system that captures, manages Electronic health record (EHR) and Medical Imaging (EMR) that stores data in a structured format. EMR or electronic medical records means the digital version of the patient chart having information stored on the computer system. Thus every paper of the patient such as his medical history, lab tests, diagnoses etc is stored in the system rather than in the form of bulky paper files. While this works well within a practice, but these are limited because these can't go outside of the premises of the organization. EHR or electronic health records are digital health information of the person. It contains much more than what is already included in EMR. EHRs include vital signs, past medical history, diagnoses, progress notes, medications, allergies, lab data, immunization dates, and imaging reports. This information can travel outside the premises of the organization as well. The information stored is also shared with external health care providers. Healthcare Industry is heavily regulated; HIPAA or Health Insurance Portability and Accountability Act protects Patient Health Information (PHI) to keep the data private and secure Desired Outcome Part 1 Part 2 Part 3 BigPharma Healthcare strives to improve care and efficiency of reports to ensure treatment decisions are faster. They also want to focus on collaboration, innovation, lower total costs and derive insights faster. The Business has decided that it's time to move to the Cloud as it wants to provide a O secure, reliable, highly available and operationally cost effective way to manage the workloads. O O Redefine the architecture with a 3-tier approach to overcome the performance and scalability issue. Remember: Everything Fails all the time, so keep the architecture loosely-coupled Use a phased approach before attempting to solve the challenge O O decision Migrate & Modernize by ensuring all 6 pillars of WAF are covered https://aws.amazon.com/architecture/well-architected, especially security, performance and cost optimization are considered important Ensure security for both Data at rest and in transit at different layers O Focus on Security specific pointers when discussing about migration to mitigate: O Lack of Cloud security architecture and strategy (don't assume Lift and Shift will work) Cloud storage data exfiltration O O O O O Disaster Recovery planning to ensure the business meets its required RTO/RPO O Assess the current architecture and identify any (in)security in the design. Evaluate the business needs based on specific insights you learnt from the assessment: Follow the 7R's https://docs.aws.amazon.com/prescriptive- guidance/latest/migration-retiring-applications/overview.html for this O O O Accidental Cloud data disclosure Can you use managed security services within the Cloud rather than building a bespoke solution Ensure the Business is complaint to HIPAA Do you have a Dev-Test environment to conduct Blue-Green, Canary testing when you update / upgrade applications. How are Back-ups planned and maintained across different layers For this exercise, you can define the RTO / RPO and design the DR accordingly (usually mission critical application has both under 15 mins ; Business critical applications have RTO - 2 Hrs and RPO - 4 Hrs) Think how you can be notified when alarms / thresholds exceed before disaster strikes. Can you use multi-zone, multi-region approach for this design to reduce impact? Case study Situation You are the CIO of BigPharma Healthcare. The ICT landscape of BigPhrama Healthcare is their on-premise system that captures, manages Electronic health record (EHR) and Medical Imaging (EMR) that stores data in a structured format. EMR or electronic medical records means the digital version of the patient chart having information stored on the computer system. Thus every paper of the patient such as his medical history, lab tests, diagnoses etc is stored in the system rather than in the form of bulky paper files. While this works well within a practice, but these are limited because these can't go outside of the premises of the organization. EHR or electronic health records are digital health information of the person. It contains much more than what is already included in EMR. EHRs include vital signs, past medical history, diagnoses, progress notes, medications, allergies, lab data, immunization dates, and imaging reports. This information can travel outside the premises of the organization as well. The information stored is also shared with external health care providers. Healthcare Industry is heavily regulated; HIPAA or Health Insurance Portability and Accountability Act protects Patient Health Information (PHI) to keep the data private and secure Desired Outcome Part 1 Part 2 Part 3 BigPharma Healthcare strives to improve care and efficiency of reports to ensure treatment decisions are faster. They also want to focus on collaboration, innovation, lower total costs and derive insights faster. The Business has decided that it's time to move to the Cloud as it wants to provide a O secure, reliable, highly available and operationally cost effective way to manage the workloads. O O Redefine the architecture with a 3-tier approach to overcome the performance and scalability issue. Remember: Everything Fails all the time, so keep the architecture loosely-coupled Use a phased approach before attempting to solve the challenge O O decision Migrate & Modernize by ensuring all 6 pillars of WAF are covered https://aws.amazon.com/architecture/well-architected, especially security, performance and cost optimization are considered important Ensure security for both Data at rest and in transit at different layers O Focus on Security specific pointers when discussing about migration to mitigate: O Lack of Cloud security architecture and strategy (don't assume Lift and Shift will work) Cloud storage data exfiltration O O O O O Disaster Recovery planning to ensure the business meets its required RTO/RPO O Assess the current architecture and identify any (in)security in the design. Evaluate the business needs based on specific insights you learnt from the assessment: Follow the 7R's https://docs.aws.amazon.com/prescriptive- guidance/latest/migration-retiring-applications/overview.html for this O O O Accidental Cloud data disclosure Can you use managed security services within the Cloud rather than building a bespoke solution Ensure the Business is complaint to HIPAA Do you have a Dev-Test environment to conduct Blue-Green, Canary testing when you update / upgrade applications. How are Back-ups planned and maintained across different layers For this exercise, you can define the RTO / RPO and design the DR accordingly (usually mission critical application has both under 15 mins ; Business critical applications have RTO - 2 Hrs and RPO - 4 Hrs) Think how you can be notified when alarms / thresholds exceed before disaster strikes. Can you use multi-zone, multi-region approach for this design to reduce impact?
Expert Answer:
Related Book For
Principles of Information Systems
ISBN: 978-1305971776
13th edition
Authors: Ralph Stair, George Reynolds
Posted Date:
Students also viewed these computer network questions
-
Planning is one of the most important management functions in any business. A front office managers first step in planning should involve determine the departments goals. Planning also includes...
-
Googles ease of use and superior search results have propelled the search engine to its num- ber one status, ousting the early dominance of competitors such as WebCrawler and Infos- eek. Even later...
-
why people who are sophisticated but face borrowing constraint would increase consumption when they receive transfer payment?
-
Stilton Audio is a producer of speakers and amplifiers which are housed in plastic cabinets. Currently production of the plastic cabinets as well as final product assembly is completed in-house. For...
-
Use information in Exercise 19-7 to prepare journal entries for the following events for the month of May. 1. Raw materials purchases for cash. 2. Direct materials usage. 3. Indirect materialsusage....
-
Consider the three-component system consisting of acetaldehyde (1), hydrogen (2), and ethanol (3). The binary diffusivity values at \(548 \mathrm{~K}\) and \(101.3 \mathrm{kPa}\) are given in Example...
-
Several complications arose during the course of trying to meet the deadline of January 20 for the Now Wedding rehearsal. Since Lauren was adamant on having the wedding on January 21 (as was Connor...
-
Why should bond investors be cautious when relying on yield to maturity? Is it an accurate measure of rate of return for investors who might not hold their bonds to maturity?
-
If you have 200 people and need to use 8 to pay 1, for a total of $4000 weekly. What would be the total amount of people need to pay everyone for the payout to be in the rotation? Figure out the...
-
What SEC issues related to accounting data and operations and remedial actions assigned and penalties are given to Ixis Victor Alston, CEO of Ixis. Provide sources an date.
-
Last month some of your friends were injured in an accident. Their total injuries were as follows: Brenda $ 85,000 Raquel $ 125,000 Louis $ 40,000 Coverage was 100/300/50. What was the total injury...
-
On the Tesla website, it has the new Model X price listed at $89,000. Tesla will take $6290 off this price for what they call a gasoline savings. Then there is an additional charge of $1200 for...
-
Why can some organizations that fail to invest heavily in human assets still be financially successful? Solve Why can some organizations that do invest heavily in human assets still be financially...
-
Johnson Department Store had net sales of $23 million and cost of goods sold of $12 million for the year. The beginning inventory for the year was $6 million. The ending inventory for the year was $1...
-
Completa las frases con el verbo correcto en el presente indicative o infinitivo: Mis amigos y yo hablar/comer _______________ el almuerzo a las doce todos los das. A usted le gusta tocar/caminar...
-
Eleni Cabinet Company sold 2,200 cabinets during 2011 at $160 per cabinet. Its beginning inventory on January 1 was 130 cabinets at $56. Purchases made during the year were as follows: February . 225...
-
Request a current copy of your free credit report through the AnnualCreditReport.com Web site. Review the report carefully for any inaccuracies. Follow the necessary steps to remove these...
-
Use a database management system to build a data-entry screen to enter this data. Build a small database with at least a dozen entries.
-
Identify and state the purpose of each of the six phases of the waterfall system development process.
-
Selected transactions from the journal of Wong Consultants are presented below (amounts in thousands). Instructions a. Post the transactions to T-accounts. b. Prepare a trial balance at August 31,...
-
The T-accounts below summarize the ledger of Negrete Landscaping at the end of the first month of operations (amounts in ). Instructions a. Prepare the complete general journal (including...
-
Lennon Industries had the following transactions. 1. Borrowed 5,000 from the bank by signing a note. 2. Paid 3,900 cash for a computer. 3. Purchased 650 of supplies on account. Instructions a....
Study smarter with the SolutionInn App