Passionate – Dedicated – Professional

Our customer’s strategy is to adopt public cloud services to help build products at rapid scale, increase operational and developer efficiencies and provide the ability to respond quickly to changes in business requirements while meeting all security and compliance controls. Being an insurance provider, it was essential that a public solution complies with risk and financial regulatory frameworks such as HIPAA (PHI), SSAE-16, Model Audit Rule (Key Financial Systems) and CIS.

The customer partnered with True Up IT to help build controls on top of AWS public cloud to achieve compliance with existing regulatory requirements. We worked with security and compliance teams to audit and map existing controls with AWS established controls. We identified gaps in coverage and implemented additional controls in their AWS environment. We designed and implemented a security architecture that can support workloads with additional data classifications, including; PFI, PII, PHI, KFS.

• Established and met regulatory compliance controls for customer’s AWS environment

• This became the stepping stone for all future cloud development efforts