Enhance EHR with AWS Isolated Recovery Environment and IGEL

Today at IGEL Now & Next, IGEL announced that it is working with key partner Amazon Web Services (AWS) to deliver an end-to-end solution for healthcare customers utilizing AWS Isolated Recovery Environment (IRE). This solution integrates IGEL’s secure endpoint technology with AWS’s hardened recovery architecture, ensuring seamless, policy-enforced access to recovered Electronic Health Record environments while maintaining the highest security and compliance standards. 

IGEL Preventative Security Model  & AWS Isolated Recovery Environment

The IGEL Preventative Security Model and AWS Isolated Recovery Environment combined form a multi-layered defense strategy that helps provide security from endpoint to cloud recovery. IGEL PSM ensures that endpoints remain a trusted, compliant, and non-persistent access point for AWS-hosted EHR environments, even in the face of sophisticated cyber threats.

• Read-Only OS: IGEL OS runs in a locked-down state, preventing malware installation, unauthorized software execution, and persistent threats. 

• No Local Data Storage: All data remains centralized within AWS IRE, eliminating the risk of endpoint data exposure due to device loss, theft, or compromise. 

• Trusted Boot Process: IGEL’s chain-of-trust architecture verifies the integrity of every OS component at boot time, ensuring the endpoint has not been tampered with. 

• Secure Application Execution: Only pre-approved applications and virtual workspace connections (ex: Amazon WorkSpaces, AppStream 2.0, or Microsoft Edge) are allowed, reducing potential attack vectors from rogue applications.
  
• Centralized Endpoint Management: IGEL Universal Management Suite (UMS) provides real-time policy enforcement, configuration lockdowns, and automated endpoint recovery, ensuring rapid response to security threats or environmental changes. 

 Securing Critical Workloads in the Cloud with AWS Isolated Recovery Environment

AWS IRE is a highly secure, logically separated recovery architecture designed to protect EHR workloads from ransomware, data corruption, and unauthorized access. 

• Logically Separated Data Storage: EHR workloads are stored in logically separated AWS accounts, ensuring isolation from the primary production environment. 

• Immutable Snapshots & Encryption: AWS Backup, AWS Snapshot Manager, and S3 Object Lock provide protected copies of EHR environments, preventing unauthorized modifications. 

• Automated Recovery Orchestration: AWS CloudFormation and AWS Lambda enable rapid, automated environment restoration with minimal manual intervention, reducing downtime during recovery. 

• Advanced Threat Detection & Monitoring: AWS GuardDuty, Security Hub, and IAM policies enforce continuous threat detection, anomaly monitoring, and strict access controls, ensuring only authorized recovery actions occur. 

• Zero Trust Access Control: AWS IRE leverages IAM policies, AWS Organizations, and AWS Control Tower to segment access permissions, restrict lateral movement, and enforce least-privilege principles. 

By combining IGEL’s endpoint security with AWS’s isolated, fully automated recovery environment, EHR customers achieve seamless, policy-driven access to their recovery systems while maintaining compliance with HIPAA, HITRUST, and NIST cybersecurity standards. 

IGEL and AWS IRE Strengthen Electronic Healthcare Record Security

• AWS Solution with Secure Endpoints: IGEL OS is part of a recovery architecture, ensuring secure, policy-driven endpoint access to EHR environments. 

• End-to-End Cyber Resilience: AWS IRE isolates EHR workloads, and IGEL ensures trusted access with a read-only, stateless OS. 
• Zero Trust and Compliance-Ready: Supports organization in meeting HIPAA, HITRUST, and NIST standards, securing healthcare operations from endpoint to cloud recovery. 
• Seamless Recovery Access: IGEL endpoints ensure clinicians and staff can instantly access AWS-hosted EHR environments in a disaster scenario. 

IGEL and AWS are delivering a fully validated, end-to-end IRE solution for EHR customers. By combining IGEL’s secure, policy-enforced endpoints with AWS’s isolated recovery architecture, healthcare organizations can achieve enhanced cyber resilience ensures , secure patient data, and maintain uninterrupted operations. 

Key Takeaways 

• Validated AWS IRE Solution: IGEL endpoints ensure compliant, trusted access to recovered EHR environments. 

• Seamless Disaster Recovery: Rapid failover with pre-configured, policy-enforced IGEL devices. 

• Zero Trust Security: Endpoint-to-cloud protection ensures resiliency against ransomware and cyberattacks. 

Would you like to explore how IGEL OS and AWS Isolated Recovery Environment can support your EHR security strategy?

Contact us today to learn more.