El Camino Hospital implemented a secure virtual desktop infrastructure called Follow Me Desktop to improve clinician mobility and productivity. The solution allows clinicians to access their full desktop environment from any device by tapping their ID badge. This reduces the average number of logins per nurse shift from 17 to 1. Physicians can also access the same desktop environment internally or remotely. The solution has increased clinician satisfaction and productivity while reducing costs compared to traditional desktops. It is supported by partner Kovarus who helped design, implement, and manage the VDI solution.
Implementing Secure Desktop Mobility to Improve Patient Care and Increase Clinician Productivity
1. Implementing Secure Desktop
Mobility to Improve Patient Care
and Increase Clinician Productivity
August 21st, 2013
James V. Brummett
Director Technical Services
2. Outline
•About El Camino Hospital
•The Challenge
•The Vision
•The Solution
• Work Flow
• Use Cases
•Findings
•Benefits
•Our Partner
3. About El Camino Hospital
•History Highlights
• 1961 – El Camino Hospital established
• 1971 – World’s first computer-aided MIS
• 2005 – First Bay Area Magnet hospital
• 2007 – Fogarty Institute for Innovation
• 2008 – Women’s Hospital & Los Gatos Campus
• 2009 – New $480M Mountain View hospital
• Popular Science “the most technologically advanced
hospital in the world”
•The Hospital of Silicon Valley
• 300 beds in Mountain View
• 143 beds in Los Gatos
4. Desktop Challenges (user)
•Inconsistent Experience
• Hardware life cycle and specifications
• Desktop look and feel
• Application specific machines
•Poor Experience
• Numerous usernames and passwords
• No mobility or support for mobile devices
• User personalization
•Remote Access
• Various portals
• Inflexible end-user desktop requirements
• No support for non-standard devices or mobile
• Different behavior internal versus external
5. Desktop Challenges (IT)
•User Support
• Shared clinical desktops
• Portal support
• Individual non-clinical desktops
• Laptop sprawl
•Distributed Management
• Patch Tuesday
• Anti-virus updates
• “Can you push this?”
•Security
• Malware battle
• Data leak protection
• Device encryption
• Locally stored data
6. The Vision (user)
•Consistent Experience
• Everything everywhere on anything
• My desktop, as me, my files, my apps, where I left off
• Fast and reliable regardless of endpoint
•Better Experience
• Reduced technical barriers
• Increased productivity
• Simplified workflow
• Personalization for clinical and non-clinical
• Enable mobility
•Remote Access
• No internal versus external differences
• Support for non-standard devices & operating systems
7. The Vision (IT)
•Centralized & Secure
• Desktops and data never leave the data center
• Encrypted communication to endpoints
• No company laptops or desktops for remote users
• No difference between internal and external access
• Desktop agility
• Desktop hardware resources
• Build, destroy, and rebuild desktops
• Personalization, but not individual desktops
• No pushing of updates, fixes, changes
•Endpoint Flexibility
• Low cost, low management endpoints
• Alternative endpoints and operating systems
• Support for mobility
8. The Solution - VDI
Individual Data
Applications
Windows OS
9. Follow Me Desktop is your own Windows desktop that follows
you from place to place, bringing with it all of your files and
open applications as you move.
Tapping your El Camino Hospital ID Badge on a Follow Me
Desktop station will log you in to your desktop, while the Single
Sign-On feature learns login credentials for applications like
Sunrise, HPF, PACS, and others. No more remembering multiple
logins, or having to re-open applications when moving from
station to station.
10. Follow Me Desktop Workflow
1. Badge In – Tap ID badge to reconnect to your desktop.
2. Work – Double-click into hospital applications and SSO logs you in
automatically.
3. Badge Out – When done, tap ID badge to disconnect from your desktop.
4. Walk Away – Desktop is maintained on the server and with all of the
applications right where it was left them while you roam to another device.
11. 11
Single Sign-On
- Software lockbox of application credentials
- Automatically captures new credentials
- Uses Active Directory account as the key
- Convenience to use ID Badge to badge in and out
- All activity logged and fed into the SIEM
12. Use Case: Bedside Medication Admin
•Prior to Follow Me Desktop
• Nurse launches application, logs in, selects patient,
documents, and logs out of application on every use of a
computer
• One medication administration for one patient can
require this login and out three times
•With Follow Me Desktop
• Nurse logs into Follow Me Desktop and launches
application once at start of shift
• Nurse badges in and out as they move their Follow Me
Desktop from station to station
•Benefits
• Ensures administration of drugs is accurately recorded
• Streamlines workflow; more time for the patient versus
the technology
13. Use Case: Physician Access
•Internal
• Same nurse benefits of logging in once and moving from
station to station using their ID Badge
•External
• Remote access to exact same desktop where they left off
• VDI client available for a variety of operating systems and
devices
• Ability to run your desktop in an HTML5 browser
•Benefits
• Physician BYOD; internal and external
• Nothing stored locally; only screen scrapes sent
• Desktop and data never leave the data center
• Encrypted communication to the endpoint
14. Findings
•Endpoint Agnostic
• Zero and thin clients
• Desktop / Laptop
• Windows / Mac / Linux
• Mobile Devices
• Tablets / Smartphones
• iOS / Android
• HTML5 Browser
•Printing
• Windows-based printing
• Follow Me Printing
• Location specific printing
• Back-end application printing
15. Findings (cont.)
•User Demand
• Easy for end user to understand and experience benefits
• POC users would not give up
• Physicians became aggressive promoters
• HIGH Demand
• Rollout schedule highly influenced by bribes
•Desktop Paradigm Shift
• Not about the endpoint; about the individual
• Everything everywhere from anything
• No installing an application here versus there
• Analysts must rethink application deployment
• Applications should become location aware
• Rethink application licensing; opportunity for savings
16. Benefits
•Enabled secure clinical mobility
• Desktop and data remain in the data center
• Secure communication to any endpoint
•Increased clinical productivity
• Reduced average of 17 logins per nurse shift to 1
• Reduced technical barriers to providing care
• Everything everywhere on anything
•Increased user satisfaction
•Simplified and reduced hard cost of endpoints
• $1000 PC / 4 years vs. $375 zero client / 6 years
•Power and cooling expense savings
• Zero client vs. PC, servers, storage, data center
infrastructure, seasonal rate changes
• $275,418 Annual Savings
17. Our Partner - Kovarus
•Premier Data Center Systems Integrator
• Specializing in architecting and integrating business-
aligned IT solutions
•5-year Relationship
• Storage (Primary, Backup, Archive)
• Server Virtualization
• BC/DR Solution
• Virtual Desktop Infrastructure
•Services
• Design & Architecture
• Engineering
• Implementation
• Project Management
18. Thank You!
James V. Brummett
Director Technical Services
(650) 940-7172
james.brummett@elcaminohospital.org
http://bit.ly/followmedesktop