HIPAA / HITRUST Compliant Clouds - Azure Managed Services
Project Hosts is a Microsoft Cloud Solution Provider (CSP) that manages the application-level HIPAA/HITRUST security controls that must be in place for healthcare companies to move their on-premises deployments into Azure.
Azure is HITRUST compliant at the infrastructure and platform (IaaS/PaaS) levels. Project Hosts builds environments on top of Azure with the additional 200+ controls required for HITRUST compliance at the application (SaaS) level.
Customers utilize Project Hosts' services in two ways: in their own Azure subscription or in our Azure subscription. The advantage to using our HITRUST Azure subscription is that each customer deployment leverages a shared security infrastructure of DMZs, gateways, proxy servers, authentication, monitoring, and more.
In addition to gaining and maintaining HITRUST security compliance, Project Hosts can also provide the essential managed cloud services, or cloudops, necessary for an ISV’s cloud solution to perform optimally. Project Hosts can provide ISV-based cloud services in several ways: in a Healthcare customer’s own Azure subscription, in an ISV’s Azure subscription, or in our Azure subscription.
Azure Managed Services
Our services include ongoing scanning, patching, log reviews, alerting, incident response, backup, DR tests, user authorization tracking, data loss prevention and more for customer developed or ISV-based applications
Our cloud security experts ensure that all HIPAA / HITRUST security controls are implemented and documented for your deployment. Our deployments are subjected to annual penetration testing and certified auditor assessments.
Hybrid Cloud Integration
We have extensive experience integrating our cloud solutions with other clouds and on-premises deployments. We also manage hybrid functionality such as Single Sign-On and integration with on-premises resources for data transfer or consolidated reporting.
Whether custom developed or from an independent software vendor (ISV), our compliance process ensures it is scanned, logged, and penetration tested to meet HITRUST compliance standards.
Real human support by phone or email, 24x7 availability, guaranteed response times by a U.S.-based staff.
ISMScloud Compliance Tool
The ISMScloud.com tool gives customer security managers visibility into how each HITRUST control is being satisfied within the environment; it documents how you implement security controls for your environment, linking to evidence needed by auditors.