Leading healthcare technology company transforming revenue cycle management processes for modern payers & providers, offers an end-to-end platform & intelligent network built on blockchain technology that embraces patient, payer, & provider interactions to drive more efficient operations and make smarter data-driven decisions. While they have been transforming the complicated & resource intensive revenue cycle operations with their platform, CloudIQ helped them strengthen their platform’s security posture & have better control of their infrastructure.
Our customer, leading healthcare ISV had several apps deployed in Azure within a single resource group, making it a challenge to manage Azure resources and access to those resources and thereby heightening security concerns due to lack of access control. While the API requests went through the app gateway, the web app requests from the public internet reached the app services without any firewall protection. So, they wanted to improve their network topology, organize the resources for enhanced security and have better control of the infrastructure.
We implemented a hub-and-spoke network topology where Palo Alto Firewall is installed in the hub v-net and App gateway, APIM, apps and data resources are deployed in spoke v-nets. And this architecture was applied across non-prod, staging and prod environments. By enabling private endpoints on PaaS resources, integrating App Services into v-nets, routing all the traffic through PaloAlto firewall and allowing access to Azure resources only though GlobalProtect VPN we effectively hardened the security posture of applications in Azure.
The new architecture has enhanced the security posture, access control and resource organization, with the added benefit of significant cost savings that came from sharing resources like – AKS, App Service Plans, Application Gateway and API management service across apps, and right sizing of the infrastructure. By using private endpoints and v-net integration, communication between Azure PaaS services stays within the Azure backbone, restricting traffic flow to the internet.
Azure, Azure App Service, Azure SQL, Azure Policies, Azure log analytics, Azure App Insights, Azure Sentinel, Azure App Gateway, Azure API Management
CloudIQ is a leading Cloud Consulting and Solutions firm that helps businesses solve today’s problems and plan the enterprise of tomorrow by integrating intelligent cloud solutions. We help you leverage the technologies that make your people more productive, your infrastructure more intelligent, and your business more profitable.
Chennai One IT SEZ,
Module No:5-C, Phase ll, 2nd Floor, North Block, Pallavaram-Thoraipakkam 200 ft road, Thoraipakkam, Chennai – 600097
© 2022 CloudIQ Technologies. All rights reserved.
Get in touch
Please contact us using the form below