HEALTHCARE SECURITY FORUM: A HIMSS EVENT
San Francisco, CA - June 11 - 12, 2018
Sandeep Chandra is the director for the SDSC Health CI Division and the executive director for Sherlock Cloud. Since joining SDSC in 2003, he has worked on different aspects of infrastructure deployment for scientific data management, as a principal investigator and in other leadership roles across a wide range of cross-disciplinary NSF, DOE, NIH and Foundation initiatives. As the director of the Health Cyberinfrastructure division, Sandeep Chandra provides strategic vision, direction, management and implementation of concepts and methodologies for building Sherlock’s technology platforms. Sandeep brings strong knowledge of the healthcare ecosystem with deep focus in compliance including NIST, FISMA and HIPAA requirements. He led the deployment of Sherlock’s compliant services in AWS making it the first compliant, hybrid Cloud platform in academia. Sandeep holds as MS in Computer Science from North Carolina State University and has over 15 years of experience providing direct policy, business, operations, and technology advice to the leadership at federal, state and academic institutions.
The San Diego Supercomputer Center was an early adopter of cloud computing for healthcare and is now an advanced user, deploying a secure hybrid cloud environment to support many critical applications for projects that include cancer research and decoding the human immune system.
This session provides attendees a great opportunity to learn how a heavy-user of cloud computing has addressed the ever-changing technological, regulatory and unique customer requirements, while simultaneously ensuring data security and privacy.
Two of the center’s leaders will discuss some key aspects of hosting and securing applications, data, and technology within hybrid cloud that spans an on-premise cloud running at UC San Diego, and another operating in the AWS cloud.
They’ll also address how technical requirements (access control, data-at-rest encryption, vulnerability management, risk assessment, incident response, etc.) are implemented and measured to support HIPAA compliance.