SlideShare a Scribd company logo

Kubernetes in healthcare overcoming security and compliance concerns

•
•
Vignesh C
Vignesh C

Kubernetes in HealthCare

Healthcare
1 of 15
Download to read offline
Kubernetes in Healthcare: Overcoming Security and Compliance Concerns
Contents Introduction 1 Trends and Challenges 3 Clarifying Containerization Opportunities 5 Four Elements of Compliant Kubernetes 8 Conclusion 12
1 Cloud providers innovate, and those innovations enable organizations like yours to develop new approaches and accomplish new goals. Introduction Healthcare organizations are under pressure to transform. They feel compelled to support their partners and customers with new digital services, but often struggle to know where to begin. Whether your organization is a provider, payer, or in healthcare technology, the basic problems are the same: you need a new way to innovate and analyze data at speed while improving customer satisfaction rapidly and without losing focus on overall value. Solving these challenges isn’t easy, but new technologies can help unlock new business possibilities, enable new forms of service delivery, and improve user satisfaction. For example, years ago, healthcare organizations started exploring the cloud as a source of new technologies to address their needs. Cloud platforms—whether Amazon, Microsoft, or Google—are now part of the IT status quo for many healthcare organizations. Your organization may rely on cloud for storage, back office workloads, analytics, or even for customer facing applications. But as technology evolves, new opportunities emerge. Cloud providers innovate, and those innovations enable organizations like yours to develop new approaches and accomplish new goals. So far cloud has delivered on its promises of simplicity, versatility, and value. Increasingly it’s also been proven in healthcare settings to be a safe, secure, and viable foundation for a regulation compliant IT infrastructure.
2 Kubernetes is the leading platform for managing and orchestrating containerized workloads and services. One of these innovations is Kubernetes, the leading platform for managing and orchestrating containerized workloads and services. Since Google open-sourced Kubernetes in 2015, it’s become the de facto standard for containerized application development and deployment because it combines ease of use with flexibility. It has rapidly evolved to become an exciting and compelling technology for leading-edge organizations of all kinds that seek to bring new capabilities to market. Kubernetes allows organizations to: • Deploy applications quickly and predictably • Scale applications on the fly • Roll out new features seamlessly • Limit hardware usage to required resources only. With these capabilities, it is easy to see why so many organizations are attracted to Kubernetes. On the surface, Kubernetes looks very different than traditional approaches. Kubernetes might be easy to download and test, but it’s not necessarily clear how to use Kubernetes for production workloads in a highly regulated environment. Not all security and compliance experts have caught up with the technology, even though compliance with containers is essentially the same as compliance with virtual machines. Simply because container technology is new, it can be difficult for a healthcare entity to understand the implications and potential risks of using containerized applications with Kubernetes without specialist knowledge. Some healthcare organizations are successfully using Kubernetes for production environments today by taking advantage of the insights and knowledge of specialist healthcare technology partners like ClearDATA. To help your organization evaluate the pros and cons of Kubernetes, this paper, built on ClearDATA’s practical, real- world experience in architecting, deploying, and maintaining Kubernetes clusters in healthcare settings, explores:
3 • The trends and challenges of using Kubernetes • Solution dimensions of using Google Kubernetes Engine (GKE), which runs within the Google Cloud Platform (GCP) • Four elements of a fully compliant Kubernetes solution. Using Kubernetes for containerized applications delivers benefits other approaches can’t match. This paper will help your IT and business decision-makers chart a course to better business outcomes. Trends & Challenges Three opportunities are driving interest in Kubernetes among healthcare organizations: the need for greater development agility, the emergence of improved higher order cloud services, and the possibilities of improving visibility for compliance and security teams. Existing technologies often don’t offer the agility organizations need in an ever-changing world. Everyone wants to go faster, fail in controlled, limited ways, and innovate more quickly than the competition. Most healthcare organizations are being pressured to be more customer oriented and focused. The days of an insurer being opaque to its customers are gone. Instead, healthcare organizations that support and assist their patients and policy holders in new ways are the ones that will succeed. By enabling accelerated application development, testing, and quality assurance, Kubernetes is seen by leading-edge healthcare organizations as a critical enabling technology that boosts agility. Increasingly, smart healthcare IT decision-makers see the value of a multi-cloud world, where choosing different technologies for different needs makes sense. For example, different workloads demand different data storage systems – some applications demand a relational database, others object storage. A correct choice of technology must be informed by Three opportunities are driving interest in Kubernetes: 1. Need for greater development agility 2. Emergence of improved higher order cloud services 3. Possibilities of improving visibility for compliance and security teams.
4 technical demands. This applies to cloud providers as much as storage systems. The different cloud providers are expanding into specific, higher order services. This is leading organizations to choose among cloud providers – often choosing a multi-cloud approach to gain specific technologies for specific workloads – as their technical requirements dictate. Since Kubernetes runs on all the major clouds, it can provide a common development platform for organizations to run applications. The value here isn’t application portability, but instead having a common framework on which to build applications. In healthcare, all technology choices require an assessment of the need to address ever-present regulatory pressures against the need to innovate. Luckily, HITRUST – a prescriptive set of controls that help organizations meet the requirements of multiple regulations and standards, including HIPAA – is an evolutionary risk management framework that has progressed to include cloud and is now advancing to include containers, thus helping to ensure sensitive data is protected. By providing a secure framework for data protection, containerized applications and Kubernetes have the potential to enable organizations to stay safe while giving patients and/or policy holders greater access to their information. Leveraging value added security and compliance technology like ClearDATA’s Automated Safeguards with Kubernetes, healthcare entities can realize that potential by bringing game changing patient and policy holder services to market quickly without compromising compliance. For a concrete example of the promise these trends hold, consider diseases such as Alzheimer’s, ALS or Huntington’s. With no current cure, the best option for patients and their doctors lies in early detection to slow down the disease’s progression. The key to getting in front of a diagnosis is a growing field called predictive medicine, and this is where the power of ML can a make life-altering difference. The ability to quickly — but securely — analyze large numbers of electronic health records can provide insights into the patterns and trends that lead to identifying a disease earlier. Treatment can be started earlier, and 4 Automated Safeguards Keep You Compliant ClearDATA helps you innovate at scale while also alleviating the risk of non-compliance. By building and deploying safeguards and guardrails within your infrastructure that meet various regulatory framework requirements, we can help you ensure that compliance is not sacrificed as you develop new applications or workloads. Based upon ClearDATA’s interpretation of specific government regulations, they define and deploy guardrails within your cloud environment. ClearDATA then automates those guardrails, called Automated Safeguards, which gives you native access to the cloud while ensuring you stay compliant. Automated Safeguards keep you and your team in an ideal state of compliance, proven by the sign of a green check that is directly mapped to the corresponding regulation in ClearDATA’s Compliance Dashboard. ClearDATA offers Automated Safeguards support across Google Cloud Platform for: • BigQuery • Cloud Pub/Sub • Cloud SQL • Cloud Storage • Compute Engine • Kubernetes (GKE)
5 with concrete proof via data that their science is sound, organizations that are researching diseases like these can secure more support and better funding — leading to even better patient care by policy holders. The knowledge provided by the analytics process can also be used to create databases or apps that empower patients and their families to better understand their condition, and play an active role in their maintaining their health. Clarifying Containerization Opportunities Though containerized applications offer great potential for healthcare organizations, it’s important to have an accurate picture of the actual benefits and opportunities. Misconceptions held by many IT leaders can color the evaluation process, may impede progress, and can contribute to buyers’ remorse. Having the most accurate information available means achieving the most favorable outcomes in your decision-making process. Clarification 1: Containers are secure. Many IT leaders worry that containers, since they’re relatively new, can’t leverage existing security expertise, won’t work with change control processes, or will need new security processes — and therefore come with additional costs and complexity. However, ClearDATA and their customers have been using containers for PHI processing for several years, and have proven that containers can be part of a secure environment. In fact, containers even help many healthcare organizations avoid traditional security challenges. Each time a new version of an application is deployed, the existing container cluster is destroyed, and new nodes and clusters are redeployed. This eliminates the need for system administrators to constantly monitor operating system updates, run security patches and scan for long-standing malware on the underlying infrastructure. 1
6 Clarification 3: The strength of Kubernetes is primarily as a common framework, not as a cross-platform cloud layer. While Kubernetes is useful as a common framework for developers to build upon across different providers, ClearDATA observes that very few organizations are going to move containerized workloads between cloud providers on the back of Kubernetes. This is an important distinction. A common framework improves developer and operator productivity, both of which directly improve application operation and delivery. In the case of Kubernetes, this provides several advantages. First, it allows users to provision for ramping applications up or down on demand — which entirely eliminates the need for manual IT intervention. Instead of focusing on implementing and maintaining applications, users can concentrate on how they want the applications to run. In addition, containerization provides exceptional continuity. When applications need to be updated, users simply clone the old container but create a new ID tag for it. The old container is shut off immediately, but kept handy for reference or rollbacks. This process eliminates system downtime during changes — a major pain point for health care organizations. Finally, Kubernetes is a self-remedying environment. It takes action to not 6 3 Clarification 2: The real ROI from containerizing applications on Kubernetes comes from improving delivery performance, not from cutting infrastructure costs. The key to driving a successful containerization strategy is to understand that ROI comes from improving engineering delivery performance. Containers are an agility-enabling technology that allow for delivering innovation at scale, while accelerating time to value. With Kubernetes, users can dynamically deploy new containers on demand, as opposed to spending months negotiating and deploying the resources needed to launch a new application or expand an existing one. Deploying a new container shuts off the old one without any downtime, and security and compliance rules can even be preloaded, so no post-deployment configuration is needed. Finally, containers are incredibly lightweight compared to individual VMs, also resulting in cost savings. 2
7 Clarification 4: Kubernetes is both easier and more complicated than it looks. While it’s relatively easy to deploy Kubernetes, it’s not as easy to do it at scale, and it’s even more complex to apply existing security and compliance approaches. Most healthcare organizations lack expertise around containerization and Kubernetes, yet the prospect of adding new skill sets can be daunting. That’s where an organization like ClearDATA can help. By choosing to utilize our expertise in both Kubernetes and the Healthcare industry, you can leverage our technical skills, let us apply best practices, and speed up the shift to containerized applications while mitigating your risk and ensuring clarity, transparency and value. 4 only ensure that the current state matches the desired state, but that it stays that way over time. If an application replica becomes faulty, Kubernetes automatically replaces it and transfers it to a new container, while the faulty continuer is neutralized. Patient care and productivity are positively impacted when IT resources are not diverted by the time- consuming task of dealing with application failure. With all those strengths, why is Kubernetes not being used as a cross-platform cloud layer? One major limitation is data gravity. The cost of shifting organizational data around is enormous because of its size, complexity, and criticality — meaning that whatever advantages (cost, availability, technological) you have from moving platforms because of Kubernetes’ portability is often outweighed by the time and costs of moving the data. The growth of the multi-cloud approach to gain higher-order services is also a factor. As cloud providers continue to innovate, organizations will increasingly build containerized applications that leverage cloud services such as IoT, machine learning, and advanced analytics. The APIs for those services differ from cloud to cloud. Therefore, migrating a containerized workload between public clouds is only one part of the story. An organization would either need to rework the application for the new cloud provider’s APIs or make use of multiple clouds for a single application — and neither option is practice or cost-effective. That said, while workload portability is unlikely to materialize for these reasons, this does not undermine the value of Kubernetes as an IT framework.
8 Four Elements of Compliant Kubernetes Having clarified the big picture for building leading-edge services on Kubernetes, it is next critical to address security and compliance. ClearDATA understands that security and compliance are essential considerations; that without attention to them, no matter what the benefits of using containerized applications with Kubernetes, any healthcare organization would hesitate to move forward. This section explores Kubernetes and: • Security • Encryption – at transit and at rest • Vulnerability scanning • Continuous development. As a multi-cloud healthcare-exclusive cloud provider to achieve HITRUST 9.1 certification, ClearDATA is leading the way with extensive expertise in the security and compliance needed to protect sensitive healthcare data, and has battle-tested perspectives on all these areas. SECURITY At ClearDATA, container security requires the adoption of consensus-driven or provider-endorsed operating system hardening. For organizations that simply want to do cloud computing, we provide hardened images that align with the Center for Internet Security (CIS) benchmarks. In the case of Google Kubernetes Engine, Google’s Container-optimized OS (COS) provides a superior foundation and ClearDATA requires its use for GKE customers. Why is this important for ClearDATA customers specifically? Unlike typical public clouds, ClearDATA’s Business Associate Agreement (BAA) extends into the compute layer. ClearDATA provides BAA coverage for responsibilities related to configuration and maintenance of the operating system running on compute instances. This additional coverage comes with requirements to use an approved hardened operating system like COS. ClearDATA, the first multi-cloud healthcare- exclusive cloud provider to achieve HITRUST 9.1 certification, is leading the way in 1. Security 2. Encryption 3. Vulnerability Scanning 4. Continuous Development
9 ClearDATA’s guidelines for deployment are specifically targeted at meeting obligations under regulations such as HIPAA, going beyond simply building SSL into containers, particularly when building clusters with the Google Kubernetes Engine (GKE). One of the values of being covered under the ClearDATA purposeful BAA is that it is negotiated to fit your specific needs. This broadened coverage includes shared obligations for responsibilities that would otherwise fall to the customer. For example, ClearDATA partners with its customers to define strategies for various processes like encryption, auto- remediation, and operating system management, to then help enforce those strategies. These processes, along with ClearDATA’s vulnerability management, allows organizations to innovate more quickly in the cloud, scaling up and down with confidence. ClearDATA also has a co-investigation model around security incidents, which enables the customer to work together with ClearDATA promptly to investigate security incidents as quickly as possible. ENCRYPTION Healthcare organizations often need to meet obligations under HIPAA, GDPR and GxP security rules that require data containing protected health information (PHI) to be encrypted in transit and at rest. ClearDATA’s guidelines for deployment are specifically targeted at meeting obligations under HIPAA, going beyond simply building SSL into containers, particularly when building clusters with the Google Kubernetes Engine (GKE). Instead, ClearDATA covers and offers guidance on Istio, the open source service mesh that builds support for automated deployment of transport layer security (TLS) for container communication. With it, any containers on your Kubernetes cluster have encryption in transit to help your organization meet regulatory requirements. That’s a key differentiator of the ClearDATA approach to building infrastructure for healthcare organizations: unlike Google or any other cloud provider, ClearDATA is willing to state that if you implement these technologies, you are compliant. Encryption at rest is a similar case. ClearDATA’s view of regulations requires encryption at rest. GKE encrypts all data at rest and the platform provides a rich set of features to meet this obligation.
ClearDATA can help organizations protect against malware and against viruses by utilizing any number of emerging security tools that provide something called vulnerability scanning. 10 Some organizations have additional requirements regarding encryption at rest around key management practices. The integration of cloud key management services (KMS) with many Google services helps make this requirement simpler and more beneficial. Today, if you want to use cloud storage but have regulatory concerns about needing to have access to the private key material, your organization can do things like use cloud KMS. You would have a private key that meets your considerations and you could take advantage of the service integration with cloud storage. You can transparently use cloud KMS to access your encrypted data. VULNERABILITY SCANNING HIPAA obliges processors of PHI to have some sort of protection against malware and against viruses. Defining and implementing this protection becomes challenging when moving to containerized platforms. ClearDATA can help organizations meet this obligation by utilizing any number of emerging security tools that provide a solution called vulnerability scanning. These tools operate at a container level versus running an antivirus on an operating system. Vulnerability scanning offers two forms of protection. First, there’s a static analysis component so that when a container image is deployed, the tools can look at the image and inventory the software in it and provide reporting to developers or security and compliance teams. Static analysis determines whether that operating system image includes any vulnerabilities or any serious concerns. One interesting thing about container images is that this kind of static analysis on operating systems software becomes much easier. For instance, you’re using a Debian based image, vulnerability scanning software understands the Debian package database format and can scan through that and pull out the versions. Your team can correlate those installed package versions with data feeds from the Debian security team. Automatically, if there is a security advisory that matches any of the versions that you have installed, the software can alert you to the problem and give your team the information it needs to address the issue.
11 The second vulnerability scanning component is a type of run time evaluation, akin to a traditional virus scan. Different products have different capabilities. ClearDATA prefers using Twistlock™ because it has rules for examining whether a container is running in a fashion that meets your organization’s policies. If, for example, your organization doesn’t allow containers to run their processes as root, any containers found to not conform to this policy could be prevented from running. A second example: certain developers could be designated as non- privileged users and have the software they develop run without certain privileges. Vulnerability scanning can also include behavior analysis, or anomaly detection. The software can profile container activities over a period of time—what it’s talking to, what APIs it uses, etc. Approved behaviors can be enforced either manually or automatically. If a container goes outside the approved behaviors, your organization can identify the problem through alerts or simply block the container from running. In addition to vulnerability scanning, some organizations work with ClearDATA to organize penetration testing through a third- party. ClearDATA sees penetration testing as an obligation for many healthcare organizations in order to look at security from multiple threat vectors, intelligently manage security weaknesses for prioritized resolution, reduce the risks of downtime, and meet regulatory requirements. CONTINUOUS DEPLOYMENT Containers lend themselves to continuous development. Containerization allows organizations to test and deploy easier, using the same binary artifact. For example, when a development team builds a Docker container, that container can be pushed to a repository and run in the test environment, which makes taking the container through QA easy because all containers are built on the same operating system image. When it’s time for an application to be promoted to production, the exact piece of software that was tested, and its environment, goes straight into production at scale. In a traditional virtualized environment, moving a workload through development may expose differences
12 in operating system patches and updates that result in unpredictable outcomes, since each virtual machine has its own separate operating system. Assuming this is the approach your development team uses - moving binary artifacts from development and test to QA, and then to production - then GKE and Kubernetes introduce many interesting future capabilities. Building better admission control into a cluster is one of these capabilities. As an example, your organization could introduce automated cluster admission validation processes that strengthen your chain of custody and eliminates manual steps. Instead of a situation where the container is required to be signed by a GPG key – which could only come from a process where a test passes any security examination – as a manual step, a cryptographic signature could be utilized; this cryptographic signature can be automatically identified and validated, with deployment being approved or refused based upon the outcome of that identification and validation. With better admission control, everyone knows that whatever is running in production on your cluster has been through all the deployment control procedures. Those procedures could enhance and strengthen security or change control. This emerging development is one that is very interesting to ClearDATA and reinforces the view that choosing Kubernetes lets healthcare organizations leverage ongoing innovation. Conclusion ClearDATA supports the compliance needs of a wide range of healthcare organizations—payers, providers, healthcare SaaS and pharma/life sciences alike—as they work through rearchitecting their infrastructure on the Google Cloud Platform, using Kubernetes. Kubernetes is a strong alternative to typical virtualization or cloud platforms and can be used to accelerate digital transformation. It offers compelling advantages and opportunities for organizations that wish to achieve agility and innovation at scale without compromising security and compliance.
13 ClearDATA is a strong proponent of Google’s efforts to enhance the relevance of containers to healthcare organizations. Containers enable a platform for innovation that can, with ClearDATA’s expertise, place compliance at its core. ClearDATA enables better protection of sensitive healthcare data by leveraging purpose-built compliance safeguards, devops automation, and healthcare expertise and has successfully helped organizations of all sizes solve their compliance issues so that they achieve a greater focus on their applications—and their users. Contact us to learn more about how ClearDATA can help your organization harness the capabilities of GKE: cleardata.com/contact-us

Recommended

Brown blake upcon 2013
Brown blake upcon 2013Brown blake upcon 2013
Brown blake upcon 2013sapenov
 
Attestor 2.0 Sneak Preview
Attestor 2.0 Sneak PreviewAttestor 2.0 Sneak Preview
Attestor 2.0 Sneak PreviewTrustArc
 
Security and compliance for healthcare pitch deck partner
Security and compliance for healthcare pitch deck partnerSecurity and compliance for healthcare pitch deck partner
Security and compliance for healthcare pitch deck partnerMicrosoft 365 Developer
 
Accelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsAccelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsCitiusTech
 
Teams healthcare partner webinar paul partner
Teams healthcare partner webinar paul partnerTeams healthcare partner webinar paul partner
Teams healthcare partner webinar paul partnerMicrosoft 365 Developer
 
Cloudian HyperStore Enables Healthcare Data Storage
Cloudian HyperStore Enables Healthcare Data StorageCloudian HyperStore Enables Healthcare Data Storage
Cloudian HyperStore Enables Healthcare Data StorageCloudian
 
Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019CitiusTech
 
Blockchain Applications in Healthcare
Blockchain Applications in HealthcareBlockchain Applications in Healthcare
Blockchain Applications in HealthcareCitiusTech
 

Recommended

Brown blake upcon 2013
Brown blake upcon 2013Brown blake upcon 2013
Brown blake upcon 2013sapenov
 
Attestor 2.0 Sneak Preview
Attestor 2.0 Sneak PreviewAttestor 2.0 Sneak Preview
Attestor 2.0 Sneak PreviewTrustArc
 
Security and compliance for healthcare pitch deck partner
Security and compliance for healthcare pitch deck partnerSecurity and compliance for healthcare pitch deck partner
Security and compliance for healthcare pitch deck partnerMicrosoft 365 Developer
 
Accelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsAccelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsCitiusTech
 
Teams healthcare partner webinar paul partner
Teams healthcare partner webinar paul partnerTeams healthcare partner webinar paul partner
Teams healthcare partner webinar paul partnerMicrosoft 365 Developer
 
Cloudian HyperStore Enables Healthcare Data Storage
Cloudian HyperStore Enables Healthcare Data StorageCloudian HyperStore Enables Healthcare Data Storage
Cloudian HyperStore Enables Healthcare Data StorageCloudian
 
Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019CitiusTech
 
Blockchain Applications in Healthcare
Blockchain Applications in HealthcareBlockchain Applications in Healthcare
Blockchain Applications in HealthcareCitiusTech
 
CIO Review
CIO ReviewCIO Review
CIO ReviewLynn Fischer
 
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s GoingBig Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s GoingHealth Catalyst
 
Data warehouse
Data warehouseData warehouse
Data warehouse6PM Solutions
 
Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5Sean Manion PhD
 
Veera raghavan
Veera raghavanVeera raghavan
Veera raghavanTHCwIT Conference
 
17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)Tom Leeson, MSc
 
Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2Sean Manion PhD
 
How to Approach Tool Integrations
How to Approach Tool IntegrationsHow to Approach Tool Integrations
How to Approach Tool IntegrationsHappiest Minds Technologies
 
Healthcare Exchange Interoperability
Healthcare Exchange InteroperabilityHealthcare Exchange Interoperability
Healthcare Exchange InteroperabilityTomislav Milinović
 
Moving healthcare applications to the cloud
Moving healthcare applications to the cloudMoving healthcare applications to the cloud
Moving healthcare applications to the cloudVelocity Technology Solutions
 
HL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and MoreHL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and MoreCitiusTech
 
Data-driven Healthcare
Data-driven HealthcareData-driven Healthcare
Data-driven HealthcareLindaWatson19
 
Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization Mark A Watts
 
Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry Paula Koziol
 
iCloud Healthcare
iCloud HealthcareiCloud Healthcare
iCloud HealthcareiCloud Inc.
 
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE IAEME Publication
 
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...sambiswal
 
Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016Dr. Aloknath De
 
VNA Technology-Evaluation Checklist
VNA Technology-Evaluation ChecklistVNA Technology-Evaluation Checklist
VNA Technology-Evaluation ChecklistCarestream
 
CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?Health Catalyst
 
How cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdfHow cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdfLaura Miller
 
Vertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WPVertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WPLuke Arrington
 

More Related Content

What's hot

Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s GoingBig Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s GoingHealth Catalyst
 
Data warehouse
Data warehouseData warehouse
Data warehouse6PM Solutions
 
Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5Sean Manion PhD
 
17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)Tom Leeson, MSc
 
Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2Sean Manion PhD
 
Healthcare Exchange Interoperability
Healthcare Exchange InteroperabilityHealthcare Exchange Interoperability
Healthcare Exchange InteroperabilityTomislav Milinović
 
HL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and MoreHL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and MoreCitiusTech
 
Data-driven Healthcare
Data-driven HealthcareData-driven Healthcare
Data-driven HealthcareLindaWatson19
 
Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization Mark A Watts
 
Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry Paula Koziol
 
iCloud Healthcare
iCloud HealthcareiCloud Healthcare
iCloud HealthcareiCloud Inc.
 
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE IAEME Publication
 
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...sambiswal
 
Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016Dr. Aloknath De
 
VNA Technology-Evaluation Checklist
VNA Technology-Evaluation ChecklistVNA Technology-Evaluation Checklist
VNA Technology-Evaluation ChecklistCarestream
 
CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?Health Catalyst
 

What's hot (20)

CIO Review
CIO ReviewCIO Review
CIO Review
 
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s GoingBig Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
Big Data in Healthcare Made Simple: Where It Stands Today and Where It’s Going
 
Data warehouse
Data warehouseData warehouse
Data warehouse
 
Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5Distributed Ledger Tech Applications - Health Report V1.5
Distributed Ledger Tech Applications - Health Report V1.5
 
Veera raghavan
Veera raghavanVeera raghavan
Veera raghavan
 
17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)17024 sapbp4 auto combined-mm (slideshare)
17024 sapbp4 auto combined-mm (slideshare)
 
Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2Distributed Ledger Tech Applications - Health Report V1.2
Distributed Ledger Tech Applications - Health Report V1.2
 
How to Approach Tool Integrations
How to Approach Tool IntegrationsHow to Approach Tool Integrations
How to Approach Tool Integrations
 
Healthcare Exchange Interoperability
Healthcare Exchange InteroperabilityHealthcare Exchange Interoperability
Healthcare Exchange Interoperability
 
Moving healthcare applications to the cloud
Moving healthcare applications to the cloudMoving healthcare applications to the cloud
Moving healthcare applications to the cloud
 
HL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and MoreHL7 Releases FHIR 4 - Highlights, Impact and More
HL7 Releases FHIR 4 - Highlights, Impact and More
 
Data-driven Healthcare
Data-driven HealthcareData-driven Healthcare
Data-driven Healthcare
 
Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization Optimizing Healthcare with Sphere3D VDI and Containerization
Optimizing Healthcare with Sphere3D VDI and Containerization
 
Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry Scalable Data Computing for Healthcare and Life Sciences Industry
Scalable Data Computing for Healthcare and Life Sciences Industry
 
iCloud Healthcare
iCloud HealthcareiCloud Healthcare
iCloud Healthcare
 
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
PRODUCT REPUTATION AND GLOBAL RATING IN E-COMMERCE
 
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
Scalable Health to Speed and Secure Biomedical Analytics - Insights.scalableh...
 
Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016Io t a_de_techgigwebinar_04nov2016
Io t a_de_techgigwebinar_04nov2016
 
VNA Technology-Evaluation Checklist
VNA Technology-Evaluation ChecklistVNA Technology-Evaluation Checklist
VNA Technology-Evaluation Checklist
 
CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?CTO Perspectives: What's Next for Data Management and Healthcare?
CTO Perspectives: What's Next for Data Management and Healthcare?
 

Similar to Kubernetes in healthcare overcoming security and compliance concerns

How cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdfHow cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdfLaura Miller
 
Vertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WPVertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WPLuke Arrington
 
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUD
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUDAUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUD
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUDIndium Software
 
Future of Cloud Computing in Healthcare.pdf
Future of Cloud Computing in Healthcare.pdfFuture of Cloud Computing in Healthcare.pdf
Future of Cloud Computing in Healthcare.pdfMarie Weaver
 
Role of Cloud Computing in Healthcare Systems
Role of Cloud Computing in Healthcare SystemsRole of Cloud Computing in Healthcare Systems
Role of Cloud Computing in Healthcare Systemsijtsrd
 
HC Integration Build vs. Buy
HC Integration Build vs. BuyHC Integration Build vs. Buy
HC Integration Build vs. Buyrogerz3
 
Cscchealthcare110512
Cscchealthcare110512Cscchealthcare110512
Cscchealthcare110512Accenture
 
Smart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentSmart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentIRJET Journal
 
Significant Advantages of Cloud Computing.pdf
Significant Advantages of Cloud Computing.pdfSignificant Advantages of Cloud Computing.pdf
Significant Advantages of Cloud Computing.pdfShelly Megan
 
Cloud Services & Solutions | Mindtree
Cloud Services & Solutions | MindtreeCloud Services & Solutions | Mindtree
Cloud Services & Solutions | MindtreeAnikeyRoy
 
A new era for the chemicals industry: Cloud computing changes the game
A new era for the chemicals industry: Cloud computing changes the gameA new era for the chemicals industry: Cloud computing changes the game
A new era for the chemicals industry: Cloud computing changes the gameaccenture
 
dinCloud PR Highlights Q3 2015
dinCloud PR Highlights Q3 2015dinCloud PR Highlights Q3 2015
dinCloud PR Highlights Q3 2015dinCloud Inc.
 
Cloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionCloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionIRJET Journal
 
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...Mindfire LLC
 
Cloud computing in healthcare industry.pdf
Cloud computing in healthcare industry.pdfCloud computing in healthcare industry.pdf
Cloud computing in healthcare industry.pdfMobibizIndia1
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VCherian & Associates
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VCherian & Associates
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VCherian & Associates
 
Frost and Sullivan Award to Apervita
Frost and Sullivan Award to ApervitaFrost and Sullivan Award to Apervita
Frost and Sullivan Award to ApervitaMichael Oltman
 

Similar to Kubernetes in healthcare overcoming security and compliance concerns (20)

How cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdfHow cloud computing is beneficial for the Healthcare industry.pdf
How cloud computing is beneficial for the Healthcare industry.pdf
 
Vertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WPVertex_Why_Software_Non_Negotiable_WP
Vertex_Why_Software_Non_Negotiable_WP
 
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUD
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUDAUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUD
AUTOMATED TESTING OF LAB MANAGEMENT SERVICES ON CLOUD
 
Future of Cloud Computing in Healthcare.pdf
Future of Cloud Computing in Healthcare.pdfFuture of Cloud Computing in Healthcare.pdf
Future of Cloud Computing in Healthcare.pdf
 
Role of Cloud Computing in Healthcare Systems
Role of Cloud Computing in Healthcare SystemsRole of Cloud Computing in Healthcare Systems
Role of Cloud Computing in Healthcare Systems
 
HC Integration Build vs. Buy
HC Integration Build vs. BuyHC Integration Build vs. Buy
HC Integration Build vs. Buy
 
Cscchealthcare110512
Cscchealthcare110512Cscchealthcare110512
Cscchealthcare110512
 
Smart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentSmart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud Environment
 
Significant Advantages of Cloud Computing.pdf
Significant Advantages of Cloud Computing.pdfSignificant Advantages of Cloud Computing.pdf
Significant Advantages of Cloud Computing.pdf
 
Cloud Services & Solutions | Mindtree
Cloud Services & Solutions | MindtreeCloud Services & Solutions | Mindtree
Cloud Services & Solutions | Mindtree
 
A new era for the chemicals industry: Cloud computing changes the game
A new era for the chemicals industry: Cloud computing changes the gameA new era for the chemicals industry: Cloud computing changes the game
A new era for the chemicals industry: Cloud computing changes the game
 
dinCloud PR Highlights Q3 2015
dinCloud PR Highlights Q3 2015dinCloud PR Highlights Q3 2015
dinCloud PR Highlights Q3 2015
 
Cloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionCloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data Encryption
 
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...
Adoption of Cloud Computing in Healthcare to Improves Patient Care Coordinati...
 
Cloud computing in healthcare industry.pdf
Cloud computing in healthcare industry.pdfCloud computing in healthcare industry.pdf
Cloud computing in healthcare industry.pdf
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po V
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po V
 
Accenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po VAccenture Cloud Healthcare Po V
Accenture Cloud Healthcare Po V
 
Cloud Reshaping Banking
Cloud Reshaping BankingCloud Reshaping Banking
Cloud Reshaping Banking
 
Frost and Sullivan Award to Apervita
Frost and Sullivan Award to ApervitaFrost and Sullivan Award to Apervita
Frost and Sullivan Award to Apervita
 

Recently uploaded

Krishnagiri call girls Tamil aunty 7877702510
Krishnagiri call girls Tamil aunty 7877702510Krishnagiri call girls Tamil aunty 7877702510
Krishnagiri call girls Tamil aunty 7877702510Vipesco
 
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Me
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near MeVIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Me
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Memriyagarg453
 
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real MeetCall Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meetpriyashah722354
 
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipur
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In RaipurCall Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipur
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipurgragmanisha42
 
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.ktanvi103
 
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...Call Girls Noida
 
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In Ludhiana
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In LudhianaHot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In Ludhiana
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In LudhianaRussian Call Girls in Ludhiana
 
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...Niamh verma
 
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabad
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in FaridabadNepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabad
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabadgragteena
 
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591adityaroy0215
 
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In Chandigarh
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In ChandigarhHot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In Chandigarh
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In ChandigarhVip call girls In Chandigarh
 
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service AvailableCall Girls Thane Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service AvailableDipal Arora
 
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking Models
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking ModelsDehradun Call Girls Service 8854095900 Real Russian Girls Looking Models
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking Modelsindiancallgirl4rent
 
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...Gfnyt.com
 
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service Dehradun
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service DehradunDehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service Dehradun
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service DehradunNiamh verma
 
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋Sheetaleventcompany
 
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real MeetChandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meetpriyashah722354
 
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012Call Girls Service Gurgaon
 
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...Niamh verma
 
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...Gfnyt.com
 

Recently uploaded (20)

Krishnagiri call girls Tamil aunty 7877702510
Krishnagiri call girls Tamil aunty 7877702510Krishnagiri call girls Tamil aunty 7877702510
Krishnagiri call girls Tamil aunty 7877702510
 
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Me
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near MeVIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Me
VIP Call Girls Noida Sia 9711199171 High Class Call Girl Near Me
 
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real MeetCall Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Call Girls Chandigarh 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
 
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipur
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In RaipurCall Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipur
Call Girl Raipur 📲 9999965857 ヅ10k NiGhT Call Girls In Raipur
 
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.
Call Now ☎ 9999965857 !! Call Girls in Hauz Khas Escort Service Delhi N.C.R.
 
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...
pOOJA sexy Call Girls In Sector 49,9999965857 Young Female Escorts Service In...
 
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In Ludhiana
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In LudhianaHot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In Ludhiana
Hot Call Girl In Ludhiana 👅🥵 9053'900678 Call Girls Service In Ludhiana
 
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...
Call Girls Service Chandigarh Gori WhatsApp ❤7710465962 VIP Call Girls Chandi...
 
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabad
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in FaridabadNepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabad
Nepali Escort Girl * 9999965857 Naughty Call Girls Service in Faridabad
 
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591
VIP Call Girl Sector 25 Gurgaon Just Call Me 9899900591
 
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In Chandigarh
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In ChandigarhHot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In Chandigarh
Hot Call Girl In Chandigarh 👅🥵 9053'900678 Call Girls Service In Chandigarh
 
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service AvailableCall Girls Thane Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Thane Just Call 9907093804 Top Class Call Girl Service Available
 
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking Models
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking ModelsDehradun Call Girls Service 8854095900 Real Russian Girls Looking Models
Dehradun Call Girls Service 8854095900 Real Russian Girls Looking Models
 
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...
❤️♀️@ Jaipur Call Girls ❤️♀️@ Meghna Jaipur Call Girls Number CRTHNR Call G...
 
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service Dehradun
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service DehradunDehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service Dehradun
Dehradun Call Girls Service ❤️🍑 8854095900 👄🫦Independent Escort Service Dehradun
 
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋
💚😋Mumbai Escort Service Call Girls, ₹5000 To 25K With AC💚😋
 
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real MeetChandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
Chandigarh Call Girls 👙 7001035870 👙 Genuine WhatsApp Number for Real Meet
 
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012
VIP Call Girls Sector 67 Gurgaon Just Call Me 9711199012
 
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...
Call Girls Amritsar 💯Call Us 🔝 8725944379 🔝 💃 Independent Escort Service Amri...
 
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...
❤️♀️@ Jaipur Call Girl Agency ❤️♀️@ Manjeet Russian Call Girls Service in Jai...
 

Kubernetes in healthcare overcoming security and compliance concerns

  • 2. Contents Introduction 1 Trends and Challenges 3 Clarifying Containerization Opportunities 5 Four Elements of Compliant Kubernetes 8 Conclusion 12
  • 3. 1 Cloud providers innovate, and those innovations enable organizations like yours to develop new approaches and accomplish new goals. Introduction Healthcare organizations are under pressure to transform. They feel compelled to support their partners and customers with new digital services, but often struggle to know where to begin. Whether your organization is a provider, payer, or in healthcare technology, the basic problems are the same: you need a new way to innovate and analyze data at speed while improving customer satisfaction rapidly and without losing focus on overall value. Solving these challenges isn’t easy, but new technologies can help unlock new business possibilities, enable new forms of service delivery, and improve user satisfaction. For example, years ago, healthcare organizations started exploring the cloud as a source of new technologies to address their needs. Cloud platforms—whether Amazon, Microsoft, or Google—are now part of the IT status quo for many healthcare organizations. Your organization may rely on cloud for storage, back office workloads, analytics, or even for customer facing applications. But as technology evolves, new opportunities emerge. Cloud providers innovate, and those innovations enable organizations like yours to develop new approaches and accomplish new goals. So far cloud has delivered on its promises of simplicity, versatility, and value. Increasingly it’s also been proven in healthcare settings to be a safe, secure, and viable foundation for a regulation compliant IT infrastructure.
  • 4. 2 Kubernetes is the leading platform for managing and orchestrating containerized workloads and services. One of these innovations is Kubernetes, the leading platform for managing and orchestrating containerized workloads and services. Since Google open-sourced Kubernetes in 2015, it’s become the de facto standard for containerized application development and deployment because it combines ease of use with flexibility. It has rapidly evolved to become an exciting and compelling technology for leading-edge organizations of all kinds that seek to bring new capabilities to market. Kubernetes allows organizations to: • Deploy applications quickly and predictably • Scale applications on the fly • Roll out new features seamlessly • Limit hardware usage to required resources only. With these capabilities, it is easy to see why so many organizations are attracted to Kubernetes. On the surface, Kubernetes looks very different than traditional approaches. Kubernetes might be easy to download and test, but it’s not necessarily clear how to use Kubernetes for production workloads in a highly regulated environment. Not all security and compliance experts have caught up with the technology, even though compliance with containers is essentially the same as compliance with virtual machines. Simply because container technology is new, it can be difficult for a healthcare entity to understand the implications and potential risks of using containerized applications with Kubernetes without specialist knowledge. Some healthcare organizations are successfully using Kubernetes for production environments today by taking advantage of the insights and knowledge of specialist healthcare technology partners like ClearDATA. To help your organization evaluate the pros and cons of Kubernetes, this paper, built on ClearDATA’s practical, real- world experience in architecting, deploying, and maintaining Kubernetes clusters in healthcare settings, explores:
  • 5. 3 • The trends and challenges of using Kubernetes • Solution dimensions of using Google Kubernetes Engine (GKE), which runs within the Google Cloud Platform (GCP) • Four elements of a fully compliant Kubernetes solution. Using Kubernetes for containerized applications delivers benefits other approaches can’t match. This paper will help your IT and business decision-makers chart a course to better business outcomes. Trends & Challenges Three opportunities are driving interest in Kubernetes among healthcare organizations: the need for greater development agility, the emergence of improved higher order cloud services, and the possibilities of improving visibility for compliance and security teams. Existing technologies often don’t offer the agility organizations need in an ever-changing world. Everyone wants to go faster, fail in controlled, limited ways, and innovate more quickly than the competition. Most healthcare organizations are being pressured to be more customer oriented and focused. The days of an insurer being opaque to its customers are gone. Instead, healthcare organizations that support and assist their patients and policy holders in new ways are the ones that will succeed. By enabling accelerated application development, testing, and quality assurance, Kubernetes is seen by leading-edge healthcare organizations as a critical enabling technology that boosts agility. Increasingly, smart healthcare IT decision-makers see the value of a multi-cloud world, where choosing different technologies for different needs makes sense. For example, different workloads demand different data storage systems – some applications demand a relational database, others object storage. A correct choice of technology must be informed by Three opportunities are driving interest in Kubernetes: 1. Need for greater development agility 2. Emergence of improved higher order cloud services 3. Possibilities of improving visibility for compliance and security teams.
  • 6. 4 technical demands. This applies to cloud providers as much as storage systems. The different cloud providers are expanding into specific, higher order services. This is leading organizations to choose among cloud providers – often choosing a multi-cloud approach to gain specific technologies for specific workloads – as their technical requirements dictate. Since Kubernetes runs on all the major clouds, it can provide a common development platform for organizations to run applications. The value here isn’t application portability, but instead having a common framework on which to build applications. In healthcare, all technology choices require an assessment of the need to address ever-present regulatory pressures against the need to innovate. Luckily, HITRUST – a prescriptive set of controls that help organizations meet the requirements of multiple regulations and standards, including HIPAA – is an evolutionary risk management framework that has progressed to include cloud and is now advancing to include containers, thus helping to ensure sensitive data is protected. By providing a secure framework for data protection, containerized applications and Kubernetes have the potential to enable organizations to stay safe while giving patients and/or policy holders greater access to their information. Leveraging value added security and compliance technology like ClearDATA’s Automated Safeguards with Kubernetes, healthcare entities can realize that potential by bringing game changing patient and policy holder services to market quickly without compromising compliance. For a concrete example of the promise these trends hold, consider diseases such as Alzheimer’s, ALS or Huntington’s. With no current cure, the best option for patients and their doctors lies in early detection to slow down the disease’s progression. The key to getting in front of a diagnosis is a growing field called predictive medicine, and this is where the power of ML can a make life-altering difference. The ability to quickly — but securely — analyze large numbers of electronic health records can provide insights into the patterns and trends that lead to identifying a disease earlier. Treatment can be started earlier, and 4 Automated Safeguards Keep You Compliant ClearDATA helps you innovate at scale while also alleviating the risk of non-compliance. By building and deploying safeguards and guardrails within your infrastructure that meet various regulatory framework requirements, we can help you ensure that compliance is not sacrificed as you develop new applications or workloads. Based upon ClearDATA’s interpretation of specific government regulations, they define and deploy guardrails within your cloud environment. ClearDATA then automates those guardrails, called Automated Safeguards, which gives you native access to the cloud while ensuring you stay compliant. Automated Safeguards keep you and your team in an ideal state of compliance, proven by the sign of a green check that is directly mapped to the corresponding regulation in ClearDATA’s Compliance Dashboard. ClearDATA offers Automated Safeguards support across Google Cloud Platform for: • BigQuery • Cloud Pub/Sub • Cloud SQL • Cloud Storage • Compute Engine • Kubernetes (GKE)
  • 7. 5 with concrete proof via data that their science is sound, organizations that are researching diseases like these can secure more support and better funding — leading to even better patient care by policy holders. The knowledge provided by the analytics process can also be used to create databases or apps that empower patients and their families to better understand their condition, and play an active role in their maintaining their health. Clarifying Containerization Opportunities Though containerized applications offer great potential for healthcare organizations, it’s important to have an accurate picture of the actual benefits and opportunities. Misconceptions held by many IT leaders can color the evaluation process, may impede progress, and can contribute to buyers’ remorse. Having the most accurate information available means achieving the most favorable outcomes in your decision-making process. Clarification 1: Containers are secure. Many IT leaders worry that containers, since they’re relatively new, can’t leverage existing security expertise, won’t work with change control processes, or will need new security processes — and therefore come with additional costs and complexity. However, ClearDATA and their customers have been using containers for PHI processing for several years, and have proven that containers can be part of a secure environment. In fact, containers even help many healthcare organizations avoid traditional security challenges. Each time a new version of an application is deployed, the existing container cluster is destroyed, and new nodes and clusters are redeployed. This eliminates the need for system administrators to constantly monitor operating system updates, run security patches and scan for long-standing malware on the underlying infrastructure. 1
  • 8. 6 Clarification 3: The strength of Kubernetes is primarily as a common framework, not as a cross-platform cloud layer. While Kubernetes is useful as a common framework for developers to build upon across different providers, ClearDATA observes that very few organizations are going to move containerized workloads between cloud providers on the back of Kubernetes. This is an important distinction. A common framework improves developer and operator productivity, both of which directly improve application operation and delivery. In the case of Kubernetes, this provides several advantages. First, it allows users to provision for ramping applications up or down on demand — which entirely eliminates the need for manual IT intervention. Instead of focusing on implementing and maintaining applications, users can concentrate on how they want the applications to run. In addition, containerization provides exceptional continuity. When applications need to be updated, users simply clone the old container but create a new ID tag for it. The old container is shut off immediately, but kept handy for reference or rollbacks. This process eliminates system downtime during changes — a major pain point for health care organizations. Finally, Kubernetes is a self-remedying environment. It takes action to not 6 3 Clarification 2: The real ROI from containerizing applications on Kubernetes comes from improving delivery performance, not from cutting infrastructure costs. The key to driving a successful containerization strategy is to understand that ROI comes from improving engineering delivery performance. Containers are an agility-enabling technology that allow for delivering innovation at scale, while accelerating time to value. With Kubernetes, users can dynamically deploy new containers on demand, as opposed to spending months negotiating and deploying the resources needed to launch a new application or expand an existing one. Deploying a new container shuts off the old one without any downtime, and security and compliance rules can even be preloaded, so no post-deployment configuration is needed. Finally, containers are incredibly lightweight compared to individual VMs, also resulting in cost savings. 2
  • 9. 7 Clarification 4: Kubernetes is both easier and more complicated than it looks. While it’s relatively easy to deploy Kubernetes, it’s not as easy to do it at scale, and it’s even more complex to apply existing security and compliance approaches. Most healthcare organizations lack expertise around containerization and Kubernetes, yet the prospect of adding new skill sets can be daunting. That’s where an organization like ClearDATA can help. By choosing to utilize our expertise in both Kubernetes and the Healthcare industry, you can leverage our technical skills, let us apply best practices, and speed up the shift to containerized applications while mitigating your risk and ensuring clarity, transparency and value. 4 only ensure that the current state matches the desired state, but that it stays that way over time. If an application replica becomes faulty, Kubernetes automatically replaces it and transfers it to a new container, while the faulty continuer is neutralized. Patient care and productivity are positively impacted when IT resources are not diverted by the time- consuming task of dealing with application failure. With all those strengths, why is Kubernetes not being used as a cross-platform cloud layer? One major limitation is data gravity. The cost of shifting organizational data around is enormous because of its size, complexity, and criticality — meaning that whatever advantages (cost, availability, technological) you have from moving platforms because of Kubernetes’ portability is often outweighed by the time and costs of moving the data. The growth of the multi-cloud approach to gain higher-order services is also a factor. As cloud providers continue to innovate, organizations will increasingly build containerized applications that leverage cloud services such as IoT, machine learning, and advanced analytics. The APIs for those services differ from cloud to cloud. Therefore, migrating a containerized workload between public clouds is only one part of the story. An organization would either need to rework the application for the new cloud provider’s APIs or make use of multiple clouds for a single application — and neither option is practice or cost-effective. That said, while workload portability is unlikely to materialize for these reasons, this does not undermine the value of Kubernetes as an IT framework.
  • 10. 8 Four Elements of Compliant Kubernetes Having clarified the big picture for building leading-edge services on Kubernetes, it is next critical to address security and compliance. ClearDATA understands that security and compliance are essential considerations; that without attention to them, no matter what the benefits of using containerized applications with Kubernetes, any healthcare organization would hesitate to move forward. This section explores Kubernetes and: • Security • Encryption – at transit and at rest • Vulnerability scanning • Continuous development. As a multi-cloud healthcare-exclusive cloud provider to achieve HITRUST 9.1 certification, ClearDATA is leading the way with extensive expertise in the security and compliance needed to protect sensitive healthcare data, and has battle-tested perspectives on all these areas. SECURITY At ClearDATA, container security requires the adoption of consensus-driven or provider-endorsed operating system hardening. For organizations that simply want to do cloud computing, we provide hardened images that align with the Center for Internet Security (CIS) benchmarks. In the case of Google Kubernetes Engine, Google’s Container-optimized OS (COS) provides a superior foundation and ClearDATA requires its use for GKE customers. Why is this important for ClearDATA customers specifically? Unlike typical public clouds, ClearDATA’s Business Associate Agreement (BAA) extends into the compute layer. ClearDATA provides BAA coverage for responsibilities related to configuration and maintenance of the operating system running on compute instances. This additional coverage comes with requirements to use an approved hardened operating system like COS. ClearDATA, the first multi-cloud healthcare- exclusive cloud provider to achieve HITRUST 9.1 certification, is leading the way in 1. Security 2. Encryption 3. Vulnerability Scanning 4. Continuous Development
  • 11. 9 ClearDATA’s guidelines for deployment are specifically targeted at meeting obligations under regulations such as HIPAA, going beyond simply building SSL into containers, particularly when building clusters with the Google Kubernetes Engine (GKE). One of the values of being covered under the ClearDATA purposeful BAA is that it is negotiated to fit your specific needs. This broadened coverage includes shared obligations for responsibilities that would otherwise fall to the customer. For example, ClearDATA partners with its customers to define strategies for various processes like encryption, auto- remediation, and operating system management, to then help enforce those strategies. These processes, along with ClearDATA’s vulnerability management, allows organizations to innovate more quickly in the cloud, scaling up and down with confidence. ClearDATA also has a co-investigation model around security incidents, which enables the customer to work together with ClearDATA promptly to investigate security incidents as quickly as possible. ENCRYPTION Healthcare organizations often need to meet obligations under HIPAA, GDPR and GxP security rules that require data containing protected health information (PHI) to be encrypted in transit and at rest. ClearDATA’s guidelines for deployment are specifically targeted at meeting obligations under HIPAA, going beyond simply building SSL into containers, particularly when building clusters with the Google Kubernetes Engine (GKE). Instead, ClearDATA covers and offers guidance on Istio, the open source service mesh that builds support for automated deployment of transport layer security (TLS) for container communication. With it, any containers on your Kubernetes cluster have encryption in transit to help your organization meet regulatory requirements. That’s a key differentiator of the ClearDATA approach to building infrastructure for healthcare organizations: unlike Google or any other cloud provider, ClearDATA is willing to state that if you implement these technologies, you are compliant. Encryption at rest is a similar case. ClearDATA’s view of regulations requires encryption at rest. GKE encrypts all data at rest and the platform provides a rich set of features to meet this obligation.
  • 12. ClearDATA can help organizations protect against malware and against viruses by utilizing any number of emerging security tools that provide something called vulnerability scanning. 10 Some organizations have additional requirements regarding encryption at rest around key management practices. The integration of cloud key management services (KMS) with many Google services helps make this requirement simpler and more beneficial. Today, if you want to use cloud storage but have regulatory concerns about needing to have access to the private key material, your organization can do things like use cloud KMS. You would have a private key that meets your considerations and you could take advantage of the service integration with cloud storage. You can transparently use cloud KMS to access your encrypted data. VULNERABILITY SCANNING HIPAA obliges processors of PHI to have some sort of protection against malware and against viruses. Defining and implementing this protection becomes challenging when moving to containerized platforms. ClearDATA can help organizations meet this obligation by utilizing any number of emerging security tools that provide a solution called vulnerability scanning. These tools operate at a container level versus running an antivirus on an operating system. Vulnerability scanning offers two forms of protection. First, there’s a static analysis component so that when a container image is deployed, the tools can look at the image and inventory the software in it and provide reporting to developers or security and compliance teams. Static analysis determines whether that operating system image includes any vulnerabilities or any serious concerns. One interesting thing about container images is that this kind of static analysis on operating systems software becomes much easier. For instance, you’re using a Debian based image, vulnerability scanning software understands the Debian package database format and can scan through that and pull out the versions. Your team can correlate those installed package versions with data feeds from the Debian security team. Automatically, if there is a security advisory that matches any of the versions that you have installed, the software can alert you to the problem and give your team the information it needs to address the issue.
  • 13. 11 The second vulnerability scanning component is a type of run time evaluation, akin to a traditional virus scan. Different products have different capabilities. ClearDATA prefers using Twistlock™ because it has rules for examining whether a container is running in a fashion that meets your organization’s policies. If, for example, your organization doesn’t allow containers to run their processes as root, any containers found to not conform to this policy could be prevented from running. A second example: certain developers could be designated as non- privileged users and have the software they develop run without certain privileges. Vulnerability scanning can also include behavior analysis, or anomaly detection. The software can profile container activities over a period of time—what it’s talking to, what APIs it uses, etc. Approved behaviors can be enforced either manually or automatically. If a container goes outside the approved behaviors, your organization can identify the problem through alerts or simply block the container from running. In addition to vulnerability scanning, some organizations work with ClearDATA to organize penetration testing through a third- party. ClearDATA sees penetration testing as an obligation for many healthcare organizations in order to look at security from multiple threat vectors, intelligently manage security weaknesses for prioritized resolution, reduce the risks of downtime, and meet regulatory requirements. CONTINUOUS DEPLOYMENT Containers lend themselves to continuous development. Containerization allows organizations to test and deploy easier, using the same binary artifact. For example, when a development team builds a Docker container, that container can be pushed to a repository and run in the test environment, which makes taking the container through QA easy because all containers are built on the same operating system image. When it’s time for an application to be promoted to production, the exact piece of software that was tested, and its environment, goes straight into production at scale. In a traditional virtualized environment, moving a workload through development may expose differences
  • 14. 12 in operating system patches and updates that result in unpredictable outcomes, since each virtual machine has its own separate operating system. Assuming this is the approach your development team uses - moving binary artifacts from development and test to QA, and then to production - then GKE and Kubernetes introduce many interesting future capabilities. Building better admission control into a cluster is one of these capabilities. As an example, your organization could introduce automated cluster admission validation processes that strengthen your chain of custody and eliminates manual steps. Instead of a situation where the container is required to be signed by a GPG key – which could only come from a process where a test passes any security examination – as a manual step, a cryptographic signature could be utilized; this cryptographic signature can be automatically identified and validated, with deployment being approved or refused based upon the outcome of that identification and validation. With better admission control, everyone knows that whatever is running in production on your cluster has been through all the deployment control procedures. Those procedures could enhance and strengthen security or change control. This emerging development is one that is very interesting to ClearDATA and reinforces the view that choosing Kubernetes lets healthcare organizations leverage ongoing innovation. Conclusion ClearDATA supports the compliance needs of a wide range of healthcare organizations—payers, providers, healthcare SaaS and pharma/life sciences alike—as they work through rearchitecting their infrastructure on the Google Cloud Platform, using Kubernetes. Kubernetes is a strong alternative to typical virtualization or cloud platforms and can be used to accelerate digital transformation. It offers compelling advantages and opportunities for organizations that wish to achieve agility and innovation at scale without compromising security and compliance.
  • 15. 13 ClearDATA is a strong proponent of Google’s efforts to enhance the relevance of containers to healthcare organizations. Containers enable a platform for innovation that can, with ClearDATA’s expertise, place compliance at its core. ClearDATA enables better protection of sensitive healthcare data by leveraging purpose-built compliance safeguards, devops automation, and healthcare expertise and has successfully helped organizations of all sizes solve their compliance issues so that they achieve a greater focus on their applications—and their users. Contact us to learn more about how ClearDATA can help your organization harness the capabilities of GKE: cleardata.com/contact-us