Download PDF
Securing Patient Privacy in Healthcare: A Case Study of M.D. Anderson Cancer Center
Technology Category
- Cybersecurity & Privacy - Application Security
- Cybersecurity & Privacy - Network Security
Applicable Industries
- Education
- National Security & Defense
Applicable Functions
- Product Research & Development
Use Cases
- Personnel Tracking & Monitoring
- Tamper Detection
Services
- System Integration
- Training
The Challenge
The University of Texas M.D. Anderson Cancer Center, one of the world’s most respected centers devoted exclusively to cancer patient care, research, education and prevention, faced a significant challenge in maintaining patient privacy. The center, which handles approximately 65,000 patients annually, has always prioritized patient privacy, even before federal and state regulations made it mandatory. As part of their Code of Ethics, patient information is confidential and cannot be disclosed to third parties without patient consent. However, with the advent of the internet and the opportunities it presented, such as telemedicine, remote access to patient records, remote consultation with a patient’s primary physician and mobile healthcare services, the center had to find a way to balance these technological advancements with the stringent requirements of HIPAA. The challenge was not only substantial due to the sheer number of patients but also because of the large number of employees, volunteers, students, postdoctoral fellows, and others who needed access to the information for educational and distance-learning opportunities.
About The Customer
The University of Texas M.D. Anderson Cancer Center is located on the sprawling campus of the Texas Medical Center in Houston, Texas. It is one of the world’s most respected centers devoted exclusively to cancer patient care, research, education, and prevention. The center was originally created by the Texas Legislature in 1941 and has since grown to become one of the nation’s original three Comprehensive Cancer Centers designated by the National Cancer Act of 1971. Today, M.D. Anderson is one of 40 such centers and has been awarded the prestigious “Accreditation with Commendation”—the highest rating given by the Joint Commission on Accreditation of Healthcare Organizations. M.D. Anderson pioneered multi-disciplinary cancer treatment and prides itself on protecting its patients’ privacy.
The Solution
To address this challenge, M.D. Anderson turned to Check Point Software Technologies and their VPN-1 Pro product. This solution tightly integrates FireWall-1 and VPN-1, supporting all deployment types including remote access, site-to-site connectivity, and extranet VPNs. It also provides easy One-Click VPN deployment and Security Management Architecture (SMART), which enables all elements of a security policy to be defined and managed from a single console. The solution was deployed on the Nokia IP Security Platform, which was chosen for its inherent security and specially hardened IPSO operating system. The platform was also chosen for its dependability, superior performance, and the fact that it comes with the VPN-1 Pro pre-loaded and pre-configured, making deployment fast and virtually foolproof. The close cooperation between Check Point and Nokia resulted in a solution that provided superior reliability, scalability, and high availability, meeting M.D. Anderson’s needs.
Operational Impact
Quantitative Benefit
Related Case Studies.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
IoT platform Enables Safety Solutions for U.S. School Districts
Designed to alert drivers when schoolchildren are present, especially in low-visibility conditions, school-zone flasher signals are typically updated manually at each school. The switching is based on the school calendar and manually changed when an unexpected early dismissal occurs, as in the case of a weather-event altering the normal schedule. The process to reprogram the flashers requires a significant effort by school district personnel to implement due to the large number of warning flashers installed across an entire school district.
Case Study
Revolutionizing Medical Training in India: GSL Smart Lab and the LAP Mentor
The GSL SMART Lab, a collective effort of the GSL College of Medicine and the GSL College of Nursing and Health Science, was facing a challenge in providing superior training to healthcare professionals. As clinical medicine was becoming more focused on patient safety and quality of care, the need for medical simulation to bridge the educational gap between the classroom and the clinical environment was becoming increasingly apparent. Dr. Sandeep Ganni, the director of the GSL SMART Lab, envisioned a world-class surgical and medical training center where physicians and healthcare professionals could learn skills through simulation training. He was looking for different simulators for different specialties to provide both basic and advanced simulation training. For laparoscopic surgery, he was interested in a high fidelity simulator that could provide basic surgical and suturing skills training for international accreditation as well as specific hands-on training in complex laparoscopic procedures for practicing physicians in India.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Case Study
Implementing Robotic Surgery Training Simulator for Enhanced Surgical Proficiency
Fundacio Puigvert, a leading European medical center specializing in Urology, Nephrology, and Andrology, faced a significant challenge in training its surgical residents. The institution recognized the need for a more standardized and comprehensive training curriculum, particularly in the area of robotic surgery. The challenge was underscored by two independent studies showing that less than 5% of residents in Italian and German residency programs could perform major or complex procedures by the end of their residency. The institution sought to establish a virtual reality simulation lab that would include endourological, laparoscopic, and robotic platforms. However, they needed a simulator that could replicate both the hardware and software of the robotic Da Vinci console used in the operating room, without being connected to the actual physical console. They also required a system that could provide both basic and advanced simulation training, and a metrics system to assess the proficiency of the trainees before they performed surgical procedures in the operating theater.
Case Study
Edinburgh Napier University streamlines long-distance learning with Cisco WebEX
• Geographically dispersed campus made in-person meetings costly and inconvenient.• Distance-learning programs in Malaysia, India, and China required dependable, user-friendly online tools to maximize interaction in collaborative workspaces.• Virtual learning environment required a separate sign-in process, resulting in a significant administrative burden for IT staff and limited adoption of collaboration technology.
