Login Book a demo

Caris Life Sciences Utilizes Apono to Quickly and Securely Access Sensitive Health Data

Caris Life Sciences

Download Case Study
decor

Securing Access to PHI in AWS S3 Folders 

Case study Caris Life Sciences

Caris Life Sciences® (Caris) is a leading next-generation AI TechBio company and precision medicine pioneer. Through comprehensive molecular profiling and the application of advanced AI and machine learning algorithms, Caris has created the large-scale, multi-modal database and computing capability needed to analyze and unravel the molecular complexity of disease. Caris’ digitized data is stored in hybrid on-prem and AWS environments.

1400+

Head Count

Dallas, Phoenix, NYC, Cambridge, Basel, Tokyo

Locations

The Challenge

Securing Protected Health Information While Migrating to the AWS Cloud

Operating under the tight regulations of HIPAA and other regulatory requirements, Caris Life Sciences needed to ensure that access to specific resources containing Protected Health Information (PHI) was controlled securely.

Enforce JIT and Just Enough Access Today

Start For Free

“Due to the sensitive nature of Caris data, our team required a solution that enabled secure access to the S3 buckets in AWS, as well as access to the folder level for more granular segmentation.”

Ronen Niv

Sr. Director of Engineering

The Results

Implement Least Privilege
Without the Headache

“We’ve implemented Apono’s privilege management capabilities to control not just who can access resources, but who can read-only, read-write, or have admin privileges for a given resource, helping to further reduce risk,” says Ronen.

Reducing Blast Radius with Privileges Controls

Mitigating access risk by limiting privileges for read only, readwrite, and admin privileges, preventing excessive privileges

Granular JIT Provisioning to S3 Folders

The DevOps team created policies that enabled the right people to access specific folders while blocking access to other folders in the bucket.

Eliminating Access Management Overhead

Integrating with existing IAM infrastructure, Apono reduces the need for time and resource-intensive admin management

Book a demo

The Outcome

Faster Approvals with Delegation and Automation

The Access They Need, When They Need It

Mitigating access risk by limiting privileges for read only, readwrite, and admin privileges, preventing excessive privileges

Consolidating Security Solutions

Combining best-of-breed cloud access security solutions with powerful controls for on-prem databases and servers enable organizations to consolidate hybrid access management under a single platform

Streamlining and Enhancing Compliance

All access requests, approvals, actions, and are continuously documented, simplifying compliance for HIPAA, SOX, etc with auto-generated PDF reporting.

Book a demo

“Knowing that access will be provided in minutes keeps workflows on track,” said Ronen. “The efficiencies gained have been remarkable.”

Our data engineers control access to their own resources. This takes DevOps out of the middle since they don’t have to reach out to get approvals. It improves the overall process and we get the added value that all of the requests are fully documented.

Ronen Niv

Sr. Director of Engineering