SlideShare une entreprise Scribd logo

Oxford University Hospital

Cisco Case Studies
Cisco Case Studies

Cisco Next-Generation Firewalls enable Oxford University Hospitals NHS Trust to securely enhance patient experience.

TechnologieSanté & Médecine
1  sur  3
Télécharger pour lire hors ligne
EXECUTIVE SUMMARY Challenge Modern healthcare is going digital. While nothing can replace the human touch, the processes found in modern hospitals and clinics are increasingly carried out using electronic entries on electronic devices. This connected approach yields significant benefits in terms of patient care, and caregiver effectiveness, yet also creates a different set of data security challenges to those associated with traditional healthcare. One organization that has faced and overcome these challenges is Oxford University Hospitals NHS Trust (OUH), a world-renowned center of clinical excellence and one of the largest National Health Service (NHS) teaching trusts in the United Kingdom. The center comprises four hospitals, and to a growing extent, the trust also coordinates research and treatment in other hospitals as well as doctors’ surgeries across Oxfordshire. Given that much of this collaboration involves digital media, OUH has had to modernize its IT security systems to help ensure patient confidentiality is not compromised. The trigger came in 2012, when existing firewalls reached end-of-support. At the time, OUH was using five perimeter firewalls: two for Internet access, one for Oxford University and JANET (the U.K. national research and education network), and two for N3 (the NHS broadband network). Unusually for an NHS trust, OUH is able to publish its internal routes onto N3 using the Cisco® Enhanced Interior Gateway Routing Protocol (EIGRP). However, its firewalls were not able to take advantage of this functionality because they could only handle Open Shortest Path First routing protocols. The result was that most Internet traffic ended up going over N3 links, throttling the NHS network and slowing the delivery of critical medical applications. At the same time, OUH was using a different vendor platform for URL filtering and proxy traffic, and wanted to combine this functionality with firewalling in a single solution for greater efficiency. Customer Case Study Hospital Trust Improves IT Security and Compliance Cisco Next-Generation Firewalls enable Oxford University Hospitals NHS Trust to securely enhance patient experience Customer Name: Oxford University Hospitals NHS Trust Industry: Healthcare Location: United Kingdom Number of Employees: 11,500 Challenge • Maintain data security while fostering open collaboration • Improve network traffic handling to reduce congestion • Reduce costs by consolidating IT appliances Solution • Cisco security based on Cisco ASA 5500-X Series Next-Generation Firewalls Results • Faster access to healthcare information and tools with 16-fold increase in network speeds • Boosted general practitioner Internet performance by 75 percent • Reduced maintenance costs by US$56,000 a year © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 Page 1 of 3
“Cisco Security Manager helped tremendously. We found it a lot quicker than expected, migrating our biggest firewall with no downtime in five days, whereas we’d thought it would take 15.” Craig McVeigh Senior Network Consultant Oxford University Hospitals NHS Trust Customer Case Study Solution OUH started reviewing the offers from a range of IT security vendors. The selection process saw Cisco rapidly emerge as a frontrunner. “Cisco was the most competitive, owing to its ability to combine web filtering and firewall functions on one cost-effective platform,” says Craig McVeigh, senior network consultant at OUH. In addition, Cisco security products were able to handle EIGRP, enabling the hospital to split different types of traffic and optimize routing to keep its N3 connections free. Finally, the Cisco products were a familiar technology since OUH was already using Cisco ASA 5520 and 5505 Adaptive Security Appliances for its VPNs and inter- departmental firewalling. OUH began replacing its external firewalls and URL filtering devices with five Cisco ASA 5555-X Series Next-Generation Firewalls. Configured as Layer 3 devices rather than inline firewalls, these were equipped with ASA CX modules for web filtering and administered via a Cisco Security Manager system. “In implementing the new firewalls, we started with the N3 links,” says McVeigh. “Cisco Security Manager helped tremendously. We found it a lot quicker than expected, migrating our biggest firewall with no downtime in five days, whereas we’d thought it would take 15.” In addition to these security technologies, OUH employees use Cisco AnyConnect® VPN Clients for secure networking. The hospital also maintains two Cisco ASA 5555-X Series Next-Generation Firewalls, without CX modules, for site-to-site connections with other trusts, and a number of Cisco ASA 5520 and 5510 Adaptive Security Appliances for other VPNs. Results “In the last five years there’s been a massive increase in our need to liaise with other NHS trusts without compromising security,” McVeigh says. OUH is now able to advance this goal and improve patient outcomes and lower costs. For example, having better secure connectivity with other clinics and hospitals means patients do not need to always travel to an OUH center for diagnosis or treatment. This capability saves travel time and money, besides speeding recovery and helping reduce patient stress levels and carbon footprint. Being able to separate Internet access from the N3 links has helped OUH improve the speed of the latter 16-fold, from around 50Mbps to 800Mbps. The delivery of N3-based medical applications has improved accordingly. Furthermore, OUH handles traffic for the other NHS trusts in Oxfordshire, representing around 30,000 endpoints in total. General practitioners using the service have reported a 75 percent improvement in Internet performance. The Cisco Next-Generation Firewalls allow OUH to grant access to different applications based on Active Directory profiles, something it had not been able to do before. Thus, for example, people using OUH laptops can be granted full access to hospital networks, whereas those using personal or mobile devices have seen their usage capped. This feature has been welcomed by the trust. When the firewalls were swapped out, OUH also upgraded its Internet link from 100Mbps to 1Gbps, raising concerns that extra bandwidth could lead to increased use of social media and other non-core applications. “In the event,” says McVeigh, “we used the CX modules to rate-limit social media down to about 30Mbps, therefore protecting our core infrastructure for NHS use.” © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 Page 2 of 3
More widely, this capability has allowed OUH to support a growing bring-your- own-device trend, thus increasing patient and employee satisfaction, without compromising systems required for clinical excellence. OUH now offers free guest Wi-Fi, for example, with a per-user limit of 50Mbps. “The CX modules really opened that door for us,” McVeigh says. “We held off offering free guest Wi-Fi until we had the modules in.” The CX module also filters the content that users can reach on the hospital network, to safeguard against patients or visitors accessing adult or gambling sites, for example. Finally, having just one vendor for security means maintenance and training costs have dropped, because most OUH technicians already have a good knowledge of the technology, and an ample public knowledge base of information exists on Cisco products. Compared to its previous vendor, OUH is saving around GB£10,000 (US$17,000) a year on maintenance. Adding URL filtering into the equation, the savings rise to about £33,000 ($56,000) a year. Next Steps Use of Active Directory-based authentication by OUH has so far been on a trial basis across two sites. However, plans are under way to extend this capability across the hospital group following work on the Active Directory system. This will help with compliance by allowing the trust to eventually eliminate generic user accounts, which can pose a security risk. OUH is also planning to use Cisco Security Manager to administer all its firewalls, further reducing administration. Customer Case Study “We used the CX modules to rate-limit social media down to about 30Mbps, therefore protecting our core infrastructure for NHS use.” Craig McVeigh Senior Network Consultant Oxford University Hospitals NHS Trust For More Information To learn more about the Cisco architectures and solutions featured in this case study, go to: www.cisco.com/go/cloud Product List Security •• Cisco ASA 5555-X Series Next-Generation Firewalls •• Cisco ASA 5520 Adaptive Security Appliances •• Cisco ASA 5510 Adaptive Security Appliances •• Cisco ASA 5505 Adaptive Security Appliances •• Cisco ASA CX Modules •• Cisco Security Manager •• Cisco AnyConnect VPN Client © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 ES/0614 Page 3 of 3 Americas Headquarters Cisco Systems, Inc. San Jose, CA Asia Pacific Headquarters Cisco Systems (USA) Pte. Ltd. Singapore Europe Headquarters Cisco Systems International BV Amsterdam, The Netherlands Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)

Recommandé

Leveraging Context-Aware Security to Safeguard Patient Data
Leveraging Context-Aware Security to Safeguard Patient DataLeveraging Context-Aware Security to Safeguard Patient Data
Leveraging Context-Aware Security to Safeguard Patient DataCisco Security
 
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...Pistoia Alliance
 
PSI Pharmaway 1.0
PSI Pharmaway 1.0PSI Pharmaway 1.0
PSI Pharmaway 1.0Dash Way
 
The Polytechnic of Namibia
The Polytechnic of NamibiaThe Polytechnic of Namibia
The Polytechnic of NamibiaCisco Case Studies
 
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...IRJET Journal
 
Bab i
Bab iBab i
Bab ileni fitriani
 
How to avoid the flu
How to avoid the fluHow to avoid the flu
How to avoid the fluGlenn Fay
 
Childrens views on disability in books
Childrens views on disability in booksChildrens views on disability in books
Childrens views on disability in booksstricolo
 

Recommandé

Leveraging Context-Aware Security to Safeguard Patient Data
Leveraging Context-Aware Security to Safeguard Patient DataLeveraging Context-Aware Security to Safeguard Patient Data
Leveraging Context-Aware Security to Safeguard Patient DataCisco Security
 
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...
Pistoia Alliance Debates: PhUSE Framework for the Adoption of Cloud Technolog...Pistoia Alliance
 
PSI Pharmaway 1.0
PSI Pharmaway 1.0PSI Pharmaway 1.0
PSI Pharmaway 1.0Dash Way
 
The Polytechnic of Namibia
The Polytechnic of NamibiaThe Polytechnic of Namibia
The Polytechnic of NamibiaCisco Case Studies
 
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...IRJET Journal
 
Bab i
Bab iBab i
Bab ileni fitriani
 
How to avoid the flu
How to avoid the fluHow to avoid the flu
How to avoid the fluGlenn Fay
 
Childrens views on disability in books
Childrens views on disability in booksChildrens views on disability in books
Childrens views on disability in booksstricolo
 
Sun Web Server Brief
Sun Web Server BriefSun Web Server Brief
Sun Web Server BriefMurthy Chintalapati
 
хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5Enhtuya Oidov
 
Thomasonian'13 Finals
Thomasonian'13 Finals Thomasonian'13 Finals
Thomasonian'13 Finals Quizzing, IIT Roorkee
 
Startup AddVenture Budapest 2015 Pitch - Apptalk.Ninja
Startup AddVenture Budapest 2015 Pitch - Apptalk.NinjaStartup AddVenture Budapest 2015 Pitch - Apptalk.Ninja
Startup AddVenture Budapest 2015 Pitch - Apptalk.NinjaStartup AddVenture by CCC Startups
 
Intro to Programming (1)
Intro to Programming (1)Intro to Programming (1)
Intro to Programming (1)Justin Reese
 
RESUME__Mayur
RESUME__MayurRESUME__Mayur
RESUME__MayurMAYUR MADHAVI
 
Emailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget MailchimpEmailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget MailchimpGustav Bergman
 
система управления персоналом
система управления персоналомсистема управления персоналом
система управления персоналомnikamironishina
 
Intranet solution for small businesses
Intranet solution for small businessesIntranet solution for small businesses
Intranet solution for small businessesITCube Solutions Pvt. Ltd.
 
Expense report
Expense reportExpense report
Expense reportConfidential
 
Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...linioti
 
Microsoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 releaseMicrosoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 releaseDavid J Rosenthal
 
University of Granada
University of GranadaUniversity of Granada
University of GranadaCisco Case Studies
 
St Olavs Hospital
St Olavs HospitalSt Olavs Hospital
St Olavs HospitalCisco Case Studies
 
City Clinic
City ClinicCity Clinic
City ClinicCisco Case Studies
 
Cisco MediGrade Network Case Study
Cisco MediGrade Network Case StudyCisco MediGrade Network Case Study
Cisco MediGrade Network Case StudyIliya Krastev
 
Cloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionCloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionIRJET Journal
 
Smart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentSmart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentIRJET Journal
 
KEH Hospital
KEH HospitalKEH Hospital
KEH HospitalCisco Case Studies
 
St georges hospital
St georges hospitalSt georges hospital
St georges hospitalwbrewin
 
St George's Healthcare NHS Trust
St George's Healthcare NHS TrustSt George's Healthcare NHS Trust
St George's Healthcare NHS TrustCisco Case Studies
 
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docxCase Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docxwendolynhalbert
 

Contenu connexe

En vedette

хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5Enhtuya Oidov
 
Intro to Programming (1)
Intro to Programming (1)Intro to Programming (1)
Intro to Programming (1)Justin Reese
 
Emailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget MailchimpEmailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget MailchimpGustav Bergman
 
система управления персоналом
система управления персоналомсистема управления персоналом
система управления персоналомnikamironishina
 
Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...linioti
 
Microsoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 releaseMicrosoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 releaseDavid J Rosenthal
 

En vedette (12)

Sun Web Server Brief
Sun Web Server BriefSun Web Server Brief
Sun Web Server Brief
 
хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5хэрэглэгдэхүүн 5
хэрэглэгдэхүүн 5
 
Thomasonian'13 Finals
Thomasonian'13 Finals Thomasonian'13 Finals
Thomasonian'13 Finals
 
Startup AddVenture Budapest 2015 Pitch - Apptalk.Ninja
Startup AddVenture Budapest 2015 Pitch - Apptalk.NinjaStartup AddVenture Budapest 2015 Pitch - Apptalk.Ninja
Startup AddVenture Budapest 2015 Pitch - Apptalk.Ninja
 
Intro to Programming (1)
Intro to Programming (1)Intro to Programming (1)
Intro to Programming (1)
 
RESUME__Mayur
RESUME__MayurRESUME__Mayur
RESUME__Mayur
 
Emailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget MailchimpEmailmarketing & mailverktyget Mailchimp
Emailmarketing & mailverktyget Mailchimp
 
система управления персоналом
система управления персоналомсистема управления персоналом
система управления персоналом
 
Intranet solution for small businesses
Intranet solution for small businessesIntranet solution for small businesses
Intranet solution for small businesses
 
Expense report
Expense reportExpense report
Expense report
 
Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...Transparent, playful and easy – identifying creative ways to facilitate and s...
Transparent, playful and easy – identifying creative ways to facilitate and s...
 
Microsoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 releaseMicrosoft Windows Intune getting started guide dec 2012 release
Microsoft Windows Intune getting started guide dec 2012 release
 

Similaire à Oxford University Hospital

Cisco MediGrade Network Case Study
Cisco MediGrade Network Case StudyCisco MediGrade Network Case Study
Cisco MediGrade Network Case StudyIliya Krastev
 
Cloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionCloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionIRJET Journal
 
Smart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentSmart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentIRJET Journal
 
St georges hospital
St georges hospitalSt georges hospital
St georges hospitalwbrewin
 
St George's Healthcare NHS Trust
St George's Healthcare NHS TrustSt George's Healthcare NHS Trust
St George's Healthcare NHS TrustCisco Case Studies
 
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docxCase Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docxwendolynhalbert
 
Techniques for Predictive ModelingGraded Discussion  Techniques.docx
Techniques for Predictive ModelingGraded Discussion  Techniques.docxTechniques for Predictive ModelingGraded Discussion  Techniques.docx
Techniques for Predictive ModelingGraded Discussion  Techniques.docxbradburgess22840
 
Application of Assent in the safe - Networkshop44
Application of Assent in the safe - Networkshop44Application of Assent in the safe - Networkshop44
Application of Assent in the safe - Networkshop44Jisc
 
University of the West of Scotland implements a Multi-Campus Juniper Networks...
University of the West of Scotland implements a Multi-Campus Juniper Networks...University of the West of Scotland implements a Multi-Campus Juniper Networks...
University of the West of Scotland implements a Multi-Campus Juniper Networks...Juniper Networks UKI
 
A Practical Guide to Developing a Connected Hospital
A Practical Guide to Developing a Connected HospitalA Practical Guide to Developing a Connected Hospital
A Practical Guide to Developing a Connected HospitalAlcatel-Lucent Enterprise
 
Presentation next step 13 novembre
Presentation next step 13 novembrePresentation next step 13 novembre
Presentation next step 13 novembreNabil Majoul
 
Healthcare campus ip_wp_00
Healthcare campus ip_wp_00Healthcare campus ip_wp_00
Healthcare campus ip_wp_00Hai Vo-Dinh
 

Similaire à Oxford University Hospital (20)

University of Granada
University of GranadaUniversity of Granada
University of Granada
 
St Olavs Hospital
St Olavs HospitalSt Olavs Hospital
St Olavs Hospital
 
City Clinic
City ClinicCity Clinic
City Clinic
 
Cisco MediGrade Network Case Study
Cisco MediGrade Network Case StudyCisco MediGrade Network Case Study
Cisco MediGrade Network Case Study
 
Cloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data EncryptionCloud Based Privacy Preserving Data Encryption
Cloud Based Privacy Preserving Data Encryption
 
Smart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud EnvironmentSmart and Secure Healthcare Administration over Cloud Environment
Smart and Secure Healthcare Administration over Cloud Environment
 
KEH Hospital
KEH HospitalKEH Hospital
KEH Hospital
 
St georges hospital
St georges hospitalSt georges hospital
St georges hospital
 
St George's Healthcare NHS Trust
St George's Healthcare NHS TrustSt George's Healthcare NHS Trust
St George's Healthcare NHS Trust
 
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docxCase Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
Case Study 4by Anil NayakiSubmission dat e 12- Dec- 20.docx
 
Ukrtransgaz
UkrtransgazUkrtransgaz
Ukrtransgaz
 
Techniques for Predictive ModelingGraded Discussion  Techniques.docx
Techniques for Predictive ModelingGraded Discussion  Techniques.docxTechniques for Predictive ModelingGraded Discussion  Techniques.docx
Techniques for Predictive ModelingGraded Discussion  Techniques.docx
 
Application of Assent in the safe - Networkshop44
Application of Assent in the safe - Networkshop44Application of Assent in the safe - Networkshop44
Application of Assent in the safe - Networkshop44
 
University of the West of Scotland implements a Multi-Campus Juniper Networks...
University of the West of Scotland implements a Multi-Campus Juniper Networks...University of the West of Scotland implements a Multi-Campus Juniper Networks...
University of the West of Scotland implements a Multi-Campus Juniper Networks...
 
A Practical Guide to Developing a Connected Hospital
A Practical Guide to Developing a Connected HospitalA Practical Guide to Developing a Connected Hospital
A Practical Guide to Developing a Connected Hospital
 
University of Dammam-Inspiring a new generation of learners
University of Dammam-Inspiring a new generation of learnersUniversity of Dammam-Inspiring a new generation of learners
University of Dammam-Inspiring a new generation of learners
 
Presentation next step 13 novembre
Presentation next step 13 novembrePresentation next step 13 novembre
Presentation next step 13 novembre
 
Meander Medisch Centrum
Meander Medisch CentrumMeander Medisch Centrum
Meander Medisch Centrum
 
Healthcare campus ip_wp_00
Healthcare campus ip_wp_00Healthcare campus ip_wp_00
Healthcare campus ip_wp_00
 
University of Granada
University of Granada University of Granada
University of Granada
 

Plus de Cisco Case Studies

Expo Milano 2015 Case Study_IT
Expo Milano 2015 Case Study_ITExpo Milano 2015 Case Study_IT
Expo Milano 2015 Case Study_ITCisco Case Studies
 
SAAOne Case Study: Private cloud for data clearway
SAAOne Case Study: Private cloud for data clearwaySAAOne Case Study: Private cloud for data clearway
SAAOne Case Study: Private cloud for data clearwayCisco Case Studies
 
Anyweb: Enabling IT Teams to Delight End Users
Anyweb: Enabling IT Teams to Delight End UsersAnyweb: Enabling IT Teams to Delight End Users
Anyweb: Enabling IT Teams to Delight End UsersCisco Case Studies
 

Plus de Cisco Case Studies (20)

Expo Milan 2015 Case Study_EN
Expo Milan 2015 Case Study_ENExpo Milan 2015 Case Study_EN
Expo Milan 2015 Case Study_EN
 
Expo Milano 2015 Case Study_IT
Expo Milano 2015 Case Study_ITExpo Milano 2015 Case Study_IT
Expo Milano 2015 Case Study_IT
 
Seeberger
Seeberger Seeberger
Seeberger
 
Neotel
Neotel Neotel
Neotel
 
Il Gruppo Marcegaglia
Il Gruppo MarcegagliaIl Gruppo Marcegaglia
Il Gruppo Marcegaglia
 
Marcegaglia Group
Marcegaglia GroupMarcegaglia Group
Marcegaglia Group
 
SAAOne Case Study: Private cloud for data clearway
SAAOne Case Study: Private cloud for data clearwaySAAOne Case Study: Private cloud for data clearway
SAAOne Case Study: Private cloud for data clearway
 
AASTMT Case Study
AASTMT Case StudyAASTMT Case Study
AASTMT Case Study
 
Bauer
Bauer Bauer
Bauer
 
Universal Motors Agencies
Universal Motors AgenciesUniversal Motors Agencies
Universal Motors Agencies
 
Equitix
Equitix Equitix
Equitix
 
ScanPlus
ScanPlusScanPlus
ScanPlus
 
Odeabank Case Study
Odeabank Case StudyOdeabank Case Study
Odeabank Case Study
 
IBB Energie AG
IBB Energie AGIBB Energie AG
IBB Energie AG
 
Lufthansa Case Study
Lufthansa Case StudyLufthansa Case Study
Lufthansa Case Study
 
Schmitz Cargobull
Schmitz CargobullSchmitz Cargobull
Schmitz Cargobull
 
Mankiewicz Gebr & Co
Mankiewicz Gebr & Co Mankiewicz Gebr & Co
Mankiewicz Gebr & Co
 
Lomma Kommun
Lomma Kommun Lomma Kommun
Lomma Kommun
 
Skipton Building Society
Skipton Building SocietySkipton Building Society
Skipton Building Society
 
Anyweb: Enabling IT Teams to Delight End Users
Anyweb: Enabling IT Teams to Delight End UsersAnyweb: Enabling IT Teams to Delight End Users
Anyweb: Enabling IT Teams to Delight End Users
 

Dernier

Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 

Dernier (20)

Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 

Oxford University Hospital

  • 1. EXECUTIVE SUMMARY Challenge Modern healthcare is going digital. While nothing can replace the human touch, the processes found in modern hospitals and clinics are increasingly carried out using electronic entries on electronic devices. This connected approach yields significant benefits in terms of patient care, and caregiver effectiveness, yet also creates a different set of data security challenges to those associated with traditional healthcare. One organization that has faced and overcome these challenges is Oxford University Hospitals NHS Trust (OUH), a world-renowned center of clinical excellence and one of the largest National Health Service (NHS) teaching trusts in the United Kingdom. The center comprises four hospitals, and to a growing extent, the trust also coordinates research and treatment in other hospitals as well as doctors’ surgeries across Oxfordshire. Given that much of this collaboration involves digital media, OUH has had to modernize its IT security systems to help ensure patient confidentiality is not compromised. The trigger came in 2012, when existing firewalls reached end-of-support. At the time, OUH was using five perimeter firewalls: two for Internet access, one for Oxford University and JANET (the U.K. national research and education network), and two for N3 (the NHS broadband network). Unusually for an NHS trust, OUH is able to publish its internal routes onto N3 using the Cisco® Enhanced Interior Gateway Routing Protocol (EIGRP). However, its firewalls were not able to take advantage of this functionality because they could only handle Open Shortest Path First routing protocols. The result was that most Internet traffic ended up going over N3 links, throttling the NHS network and slowing the delivery of critical medical applications. At the same time, OUH was using a different vendor platform for URL filtering and proxy traffic, and wanted to combine this functionality with firewalling in a single solution for greater efficiency. Customer Case Study Hospital Trust Improves IT Security and Compliance Cisco Next-Generation Firewalls enable Oxford University Hospitals NHS Trust to securely enhance patient experience Customer Name: Oxford University Hospitals NHS Trust Industry: Healthcare Location: United Kingdom Number of Employees: 11,500 Challenge • Maintain data security while fostering open collaboration • Improve network traffic handling to reduce congestion • Reduce costs by consolidating IT appliances Solution • Cisco security based on Cisco ASA 5500-X Series Next-Generation Firewalls Results • Faster access to healthcare information and tools with 16-fold increase in network speeds • Boosted general practitioner Internet performance by 75 percent • Reduced maintenance costs by US$56,000 a year © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 Page 1 of 3
  • 2. “Cisco Security Manager helped tremendously. We found it a lot quicker than expected, migrating our biggest firewall with no downtime in five days, whereas we’d thought it would take 15.” Craig McVeigh Senior Network Consultant Oxford University Hospitals NHS Trust Customer Case Study Solution OUH started reviewing the offers from a range of IT security vendors. The selection process saw Cisco rapidly emerge as a frontrunner. “Cisco was the most competitive, owing to its ability to combine web filtering and firewall functions on one cost-effective platform,” says Craig McVeigh, senior network consultant at OUH. In addition, Cisco security products were able to handle EIGRP, enabling the hospital to split different types of traffic and optimize routing to keep its N3 connections free. Finally, the Cisco products were a familiar technology since OUH was already using Cisco ASA 5520 and 5505 Adaptive Security Appliances for its VPNs and inter- departmental firewalling. OUH began replacing its external firewalls and URL filtering devices with five Cisco ASA 5555-X Series Next-Generation Firewalls. Configured as Layer 3 devices rather than inline firewalls, these were equipped with ASA CX modules for web filtering and administered via a Cisco Security Manager system. “In implementing the new firewalls, we started with the N3 links,” says McVeigh. “Cisco Security Manager helped tremendously. We found it a lot quicker than expected, migrating our biggest firewall with no downtime in five days, whereas we’d thought it would take 15.” In addition to these security technologies, OUH employees use Cisco AnyConnect® VPN Clients for secure networking. The hospital also maintains two Cisco ASA 5555-X Series Next-Generation Firewalls, without CX modules, for site-to-site connections with other trusts, and a number of Cisco ASA 5520 and 5510 Adaptive Security Appliances for other VPNs. Results “In the last five years there’s been a massive increase in our need to liaise with other NHS trusts without compromising security,” McVeigh says. OUH is now able to advance this goal and improve patient outcomes and lower costs. For example, having better secure connectivity with other clinics and hospitals means patients do not need to always travel to an OUH center for diagnosis or treatment. This capability saves travel time and money, besides speeding recovery and helping reduce patient stress levels and carbon footprint. Being able to separate Internet access from the N3 links has helped OUH improve the speed of the latter 16-fold, from around 50Mbps to 800Mbps. The delivery of N3-based medical applications has improved accordingly. Furthermore, OUH handles traffic for the other NHS trusts in Oxfordshire, representing around 30,000 endpoints in total. General practitioners using the service have reported a 75 percent improvement in Internet performance. The Cisco Next-Generation Firewalls allow OUH to grant access to different applications based on Active Directory profiles, something it had not been able to do before. Thus, for example, people using OUH laptops can be granted full access to hospital networks, whereas those using personal or mobile devices have seen their usage capped. This feature has been welcomed by the trust. When the firewalls were swapped out, OUH also upgraded its Internet link from 100Mbps to 1Gbps, raising concerns that extra bandwidth could lead to increased use of social media and other non-core applications. “In the event,” says McVeigh, “we used the CX modules to rate-limit social media down to about 30Mbps, therefore protecting our core infrastructure for NHS use.” © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 Page 2 of 3
  • 3. More widely, this capability has allowed OUH to support a growing bring-your- own-device trend, thus increasing patient and employee satisfaction, without compromising systems required for clinical excellence. OUH now offers free guest Wi-Fi, for example, with a per-user limit of 50Mbps. “The CX modules really opened that door for us,” McVeigh says. “We held off offering free guest Wi-Fi until we had the modules in.” The CX module also filters the content that users can reach on the hospital network, to safeguard against patients or visitors accessing adult or gambling sites, for example. Finally, having just one vendor for security means maintenance and training costs have dropped, because most OUH technicians already have a good knowledge of the technology, and an ample public knowledge base of information exists on Cisco products. Compared to its previous vendor, OUH is saving around GB£10,000 (US$17,000) a year on maintenance. Adding URL filtering into the equation, the savings rise to about £33,000 ($56,000) a year. Next Steps Use of Active Directory-based authentication by OUH has so far been on a trial basis across two sites. However, plans are under way to extend this capability across the hospital group following work on the Active Directory system. This will help with compliance by allowing the trust to eventually eliminate generic user accounts, which can pose a security risk. OUH is also planning to use Cisco Security Manager to administer all its firewalls, further reducing administration. Customer Case Study “We used the CX modules to rate-limit social media down to about 30Mbps, therefore protecting our core infrastructure for NHS use.” Craig McVeigh Senior Network Consultant Oxford University Hospitals NHS Trust For More Information To learn more about the Cisco architectures and solutions featured in this case study, go to: www.cisco.com/go/cloud Product List Security •• Cisco ASA 5555-X Series Next-Generation Firewalls •• Cisco ASA 5520 Adaptive Security Appliances •• Cisco ASA 5510 Adaptive Security Appliances •• Cisco ASA 5505 Adaptive Security Appliances •• Cisco ASA CX Modules •• Cisco Security Manager •• Cisco AnyConnect VPN Client © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. EDCS-1425603 ES/0614 Page 3 of 3 Americas Headquarters Cisco Systems, Inc. San Jose, CA Asia Pacific Headquarters Cisco Systems (USA) Pte. Ltd. Singapore Europe Headquarters Cisco Systems International BV Amsterdam, The Netherlands Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)