Cloudticity

Builds security into application architecture for continuous DevOps protection

"Smart Check lets us leverage all the continuous work and research that Trend Micro does to ensure that, as new threats appear, we are constantly updating and protecting against them."

Gerry Miller
Founder and CEO, Cloudticity

Customer

Cloudticity, a next-generation managed services provider (MSP) for the healthcare industry, helps customers design, build, migrate, manage, and optimize Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health Act (HITECH Act) compliant solutions on Amazon Web Services (AWS). It was the first company to focus exclusively on HIPAA-compliant solutions for AWS, where they installed the first patient portal and health information exchange.

Challenges

DevOps environments like Cloudticity’s deliver software continuously, so security must be built into the development process, before the first line of code is even written. Cloudticity needed a security solution that embeds security deep into its application architectures and processes to protect its own environments and those of its customers.

To stay ahead of the competition, Cloudticity needed to:

  • Secure its application development pipeline
  • Ensure its security solution met or exceeded the hundreds of controls in the HITRUST framework
  • Deliver a consolidated view into all areas of its security
  • Automate repetitive tasks, immediately secure new AWS instances, and produce reports for auditors

 

Solution

With Trend Micro™ Deep Security™, Cloudticity delivers the security its clients need to protect patient information and comply with HIPAA, HITRUST, and other regulations in the AWS cloud. “Trend Micro Deep Security has been central to our ability to achieve HITRUST certification, and that is not an insignificant feature,” said Gerry Miller, Founder/CEO/CTO of Cloudticity.

Cloudticity also uses Trend Micro™ Deep Security™ Smart Check for robust DevOps protection. Smart Check enables the organization to protect its container images with continuous security that is automated within its continuous integration and continuous delivery (CI/CD) pipeline.

“Smart Check’s ability to perform the final validation of the binary integrity of a container before it ships is a great check for us,” says Miller. “We are a small, agile company and it has been advantageous for us and our clients to stay ahead of the security curve.”