SOPHiA GENETICS Enhances Security with Microsoft Solutions
SOPHiA GENETICS, a Swiss-based company at the forefront of data-driven healthcare solutions, has enhanced its IT security and reduced costs by expanding its collaboration with Microsoft. The company, founded in 2011, utilizes the cloud-based SOPHiA AI platform to analyze genomic data, aiding in the identification of genetic variants, disease diagnosis, and treatment decisions. Operating across Switzerland, France, the UK, and the USA, SOPHiA GENETICS handles highly sensitive patient data, making robust IT security a paramount concern.
Previously, SOPHiA GENETICS employed a “best-of-breed” approach to IT security, using solutions from multiple providers. This strategy, however, presented challenges. The complexity of managing sensitive data through a managed security service provider (MSSP) that lacked integration with Microsoft Azure, which SOPHiA GENETICS already utilized, resulted in increased operational costs due to the need to manually transfer, configure, and update data. Furthermore, this lack of integration created security vulnerabilities.
To address these issues, SOPHiA GENETICS extended its existing partnership with Microsoft into the security domain. Leveraging Microsoft 365 E5 and Microsoft Sentinel, plus guidance from Microsoft and Ontinue, a managed Extended Detection and Response (MXDR) services provider, the company developed and rapidly implemented a comprehensive security system. This consolidation of tools and services enhanced security and reduced costs.
Partner Ontinue, with its AI-powered MXDR services, played a crucial role in this transition. Ontinue ION leverages an AI-powered platform, human expertise, and Microsoft tools to deliver tailored protection, ensuring fast threat detection, response, and ongoing security posture enhancement.
This strategic shift enabled SOPHiA GENETICS to achieve several key benefits:
- Minimized security risks.
- Consolidated their IT landscape.
- Reduced costs associated with IT security management.
- Allowed a greater focus on their core business of developing and providing data-driven healthcare solutions.
“Cooperation with Microsoft leaves SOPHiA GENETICS ideally equipped for the future. With such a reliable partner by our side, we are free to concentrate on our core business: supporting healthcare organizations and their patients.”
— Jonathan Sinclair, Chief Information Security Officer, SOPHiA GENETICS
Streamlined Data Management and Enhanced Security
SOPHiA GENETICS’ data analytics platform, SOPHiA DDM, provides medical institutes with a SaaS solution for analyzing genomic and phenotypical data. The platform supports the analysis of diseases like cancer and hereditary conditions, using a global network to identify potential treatments based on patient data. With the sensitive nature of this data, robust security is of utmost importance.
The implementation of Microsoft 365 E5 and Microsoft Sentinel provided a secure, single-platform solution for data management. By centralizing data within the Microsoft cloud and leveraging the Azure cloud infrastructure, SOPHiA GENETICS eliminated the need for manual data transmission. The new solution provided comprehensive protection against cyberattacks, enhanced control, and greater efficiency in managing sensitive patient data. Ontinue supports 24/7 SOC services to detect and mitigate potential threats.
Future-Proofing Healthcare Solutions
SOPHiA GENETICS’ collaboration with Microsoft provides access to a global network of data centers. This access ensures data is stored securely within regional data centers. This arrangement is also compliant with local data legislation. Continuous adaptation of their security strategy in response to emerging threats, and the deployment of cutting-edge security solutions, is an ongoing priority for SOPHiA GENETICS.
In the future, SOPHiA GENETICS plans to further enhance its analysis of genetic data within its digital patient journey. Utilizing the comprehensive security measures now in place, SOPHiA GENETICS is well-positioned to pursue its vision of improving patient care through data-driven insights.
“Implementation was rapid and very simple, as we were able to build on the existing Microsoft infrastructure. All the data was migrated within a few months, which saved us a lot of time and money,” stated Jonathan Sinclair.
