HIPAA Journal is the leading provider of news, updates, and independent advice for HIPAA compliance

CloudHealth Rolls out FlexOrgs and Advanced Permissions

CloudHealth has announced the general availability of two new features of its cloud management and cost control platform: FlexOrgs and Advanced User Permissions.

When businesses scale up the use of public clouds, complexity increases and traditional management tools become far less effective.  Enterprises with hundreds of cloud consumers using thousands of different services can struggle to effectively manage their cloud usage and there is often considerable wastage as a result.

Even when a Cloud Center of Excellence (CCoE) is established as a point of control and visibility it can be hard to manage and govern the enterprise cloud environment, especially at scale. Since the CCoE usually consists of a small group of individuals, in order to effectively manage the entire cloud environment, some responsibilities need to be delegated to business units, departments, and teams.

It is essential to have the right tools in place to support the CCoE that will work under this setup, but most management tools do not support this approach. CloudHealth’s FlexOrgs and Advanced User Permissions solve this problem.

Get The Checklist

Free and Immediate Download
of HIPAA Compliance Checklist

Delivered via email so verify your email address is correct.

Your Privacy Respected

HIPAA Journal Privacy Policy

When management responsibilities are delegated, permissions must be set but this is often not straightforward. A Cloud Program Manager in one of the organization’s business units could be delegated responsibilities for administering their own CloudHealth reports, but they are also likely to need to provide the CCoE with savings estimates and make recommendations. It would not be possible to provide the right level of permissions to cover all responsibilities, without granting excess permissions for the global scope.

“CloudHealth’s advanced user permissions provide the capabilities for an administrator to capture these nuances and delegate them to those closer to the details. All of these capabilities are backed by a powerful set of APIs to ensure that a customer can programmatically extend their environment,” said CloudHealth. “Keeping your sources of truth connected to CloudHealth ensures continuous governance and control of your environment. User Groups leverage SSO mappings to take the rich information about group membership and extend that to authorize your users into the right data segments with the right permissions.”

FlexOrgs is a new feature that provides fine control over user access, sharing, and delegation across multiple levels of organizational hierarchy. With FlexOrgs, the organization’s structure is set in the system as a hierarchy of organizational units that reflect how management control needs to be delegated. Each unit can then be assigned responsibilities for managing certain parts of the cloud infrastructure.

This means that individuals log in, they will only see data that is relevant to their role and responsibilities, they will not have to filter through other data to find the information they need. Not only does that improve security, it means everyone has faster access to the data they need, which means faster and more accurate decisions can be made about the products they are authorized to manage.

“The successful execution of cloud governance at scale is an incredibly complex problem and enterprise’s need the tools to represent their business to effectively find the sweet spot between cost control and cloud autonomy,” explained CloudHealth “We believe that a platform should reduce complexity and drive effective decision making into your organization. With FlexOrgs we invite you to join us on that journey.”

Author: Steve Alder is the editor-in-chief of HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered on HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has several years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics.