The standard-bearer for standards
Download case study
In the high-stakes businesses of healthcare and finance, compliance is king. Failure to adhere to federal and industry regulations can result in serious fines for companies, or in certain situations, much, much worse. If only those companies knew to turn to Lumen21 for help.
Lumen21, an award-winning global technology firm, focuses on being the be-all-end-all for mid-sized and large organizations with complex compliance needs.
The Microsoft Cloud Services Provider, based out of Orange, California, offers all the required processes for meeting regulatory standards, freeing companies from having to build anything themselves. To that end, Lumen21 understands that compliance is not a checkbox, and it is not one-size-fits-all for every company. “One of the reasons I came here a few years ago was because I had worked at a large healthcare company and had seen that many of our vendors had a lot of problems implementing requirements for HIPAA and securing data,” said Nancy Wilson, VP of Privacy and Compliance.
Multiple inhibitors for regulated industries
Lumen in Latin means to understand and see clearly. The number twenty-one is meant to signify the current century, positioning Lumen21 as understanding life in this century. Back in 2007, when the company first formed, that understanding focused on IT assistance and managed services. “I wanted a set of services that focused on value-add,” said Lumen21 President Ed Don. “My hope was to then expand within that realm to something truly unique in the marketplace.” That led Lumen21 to managed services in security, which in turn led to organizations in regulated and compliance industries, especially healthcare and financial services organizations governed by payment card industry (PCI) regulatory requirements and the Health Insurance Portability and Accountability Act (HIPAA). The niche that Don carved out for his company offered huge rewards if Lumen21 could deliver the goods. If not, they’d quickly become a historical footnote.
The forecast calls for cloud
So how does a company go from compliance to the cloud? “We were looking at our business and direction and I started wondering about what would happen if the cloud technology that people were talking about became a normal way of doing business,” said Don. “We immediately knew that could be a game changer for us.” So a little over two years ago, Lumen21 embarked on a journey to embrace the cloud.
First, Lumen21 decided to recalibrate its business model. Why not help its customers, the ones in highly-regulated industries, find the best ways to adopt into the inevitable cloud transformation sweeping across the globe? “We knew from experience that these industries were going to encounter tremendously challenging issues in adopting that technology,” said Don. “Our idea was to take a leadership role by offering more ready-made solutions for meeting regulatory requirements in the cloud.”
Cloud compliance comes with a different set of challenges than on-premises. The hands-on efforts that compliance requires must be integrated with the distant hands-off circumstances that come with the cloud. “You can control on-premises much more easily and implement things much more quickly because you’ve got people physically touching the environment,” said Raj Gupta, Chief Technology Officer at Lumen21. Looking to put its best foot forward, the company needed to choose a cloud platform to blend with its own well-seasoned regulatory ingredients. It found that platform in Azure. “Microsoft Azure provides a comprehensive set of tools that allow companies to address Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry Data Security Standards (PCI-DSS) compliance in the cloud, including business associate agreements (BAA) for Windows Azure Core Services to meet HIPAA Requirements,” said Wilson.