Building a Well-Architected HIPAA-Compliant Architecture for Spire Health
Spire Health specializes in continuous respiration sensing and high-adherence, patient-friendly ambulatory monitoring. Its mission is to harness the power of algorithms and sensors to improve health outcomes by empowering patients and physicians with useful and actionable data. Currently, they work with partners across a range of health conditions, including chronic obstructive pulmonary disease (COPD), congestive heart failure, asthma, sleep disorders, and anxiety.
Spire needed comprehensive and continuous compliance across all its cloud environments to be fully compliant with HIPAA regulations, which involves setting up a documented process for monitoring, maintenance, patching, and encryption.
Ibexlabs was there to help the company work through the technical portion of the HIPAA Risk Assessment and establish best practice protocols for protecting electronic data.
Ibexlabs set up a secure environment for Spire Health to maintain least privileges based on user roles and responsibilities, and automate infrastructure provisioning.
Advanced AWS security services were implemented to ensure the highest level of security and compliance.
DataDog, Terraform, DashSDK, Okta, OpsGenie, CrowdStrike, Ermetic, CloudFlare
"We’re now operating as a HIPAA compliant business, and Ibexlabs is providing ongoing support to ensure that we remain compliant. We’ve successfully completed several audits and assessments."