Tgix’s comprehensive assessment allowed our client to improve their security posture and meet compliance requirements.
The client is a leading nonprofit research organization dedicated to accelerating the development of improved therapies and ultimately a cure for Parkinson’s disease through funding groundbreaking research.
The NPO needed to secure its AWS environments hosting core data and sensitive PHI, while meeting strict regulatory requirements such as HIPAA and SOC 2. Operating across multiple AWS accounts for production, non-production, and shared services, the organization faced the complex task of identifying and remediating vulnerabilities to strengthen its security posture, protect critical data assets, and ensure smooth, compliant operations.
Tgix performed a comprehensive AWS security assessment across the organization’s entire cloud footprint. This included both manual and automated reviews, vulnerability scans, and penetration testing to uncover risks. The assessment covered systems and network components, IAM policies, and encryption practices with AWS KMS. Tgix also reviewed logging and monitoring (CloudWatch, CloudTrail, Config), application architectures to ensure proper PII isolation, DevSecOps integration within CI/CD pipelines, and backup/DR strategies. Stakeholder interviews and IT process reviews provided further insights into operational gaps and compliance risks.
The assessment exposed several critical vulnerabilities and provided a detailed remediation roadmap. Key recommendations included implementing Web Application Firewalls (WAF), upgrading Amazon Machine Images (AMIs), enhancing disaster recovery capabilities, and strengthening monitoring and logging practices. These steps significantly improved compliance, resilience, and operational efficiency. The non-profit now operates on a secure and compliant AWS platform, protecting PHI and enabling its research mission with greater confidence and trust
Solutions
© Copyright 2024 – Tgix – All Rights Reserved
