Success Stories

Our client’s success in meeting their goals is our most important objective.

Maturing Cyber Security in a Rapidly Expanding Software Space

Maturing Cyber Security in a Rapidly Expanding Software Space

Trillium’s client is a software and analytics company that had a rapidly expanding client base, creating an increased risk profile for data under its control. In addition, existing customers had security concerns about data loss, creating a financial and reputational risk for the client.  Security concerns have also caused lengthened sales cycles for the client.  Several factors contributed to the client’s concerns about cyber security, including a lack of security tooling or data; a soft security roadmap requiring review and remediation; and, existing improvements to security and analytics were neither aligned nor prioritized within the technology landscape.

How We Solved It

Trillium reviewed and assessed the current state of the client’s cyber security processes and technology, and begin a risk reduction plan.  The project baselined the client’s cyber security against industry standards, analyzed tactical risks of the current state, and identified a remediation approach to the security risks.  The risk-reduction program was aligned to the client’s product roadmap.

Results

  • Product improvements aligned with security risk-reduction initiative
  • Risk-remediation reduced risk by 20% in the first 3 months
  • Sales team closed the sale on 2 large accounts by addressing security concerns

Download this Success Story »

Aligning Disaster Recovery Solutions for a Hospital Group

Aligning Disaster Recovery Solutions for a Hospital Group

Trillium’s client is a hospital group that needed assistance with the requirements and selection of a Disaster Recovery (DR) solution.  Because of significant factors relating to medical records, privacy, and security, as well as being cognizant of cost, the client wanted to ensure that they were making the correct choice DR solution.   
   
The client began its search for a DR solution by contacting vendors, and was being presented with numerous disparate and very costly solutions without first understanding the requirements.  In addition, they did not understand business risk factors to make a good choice for a DR path forward.  Other factors that need to be considered were unique emergency medical system requirements, gaps in HIPAA requirements, and technology sprawl due to uncontrolled growth.  The client needed a structured approach to its system selection.

How We Solved It

Trillium to brought rigor and organization to the DR selection process.  We used our structured system selection approach to provide clarity and alignment to the selection process.  The process included documenting the client’s current technology to align understanding within the organization; documenting business, technology, security, and product requirements including medical and HIPAA security challenges; and analyzing and scoring potential solutions to determine the best DR approach.

Results

  • A tiered solution was selected, resulting in a cost reduction of 42%
  • Technology sprawl was remediated with a 30% reduction in servers and a 25% reduction in licensing
  • Remediation of critical technology skill gaps in the organization resulted from the DR engagement

Download this Success Story »

Improving Operational and Technological Scalability for a Healthcare Services Organization

Improving Operational and Technological Scalability for a Healthcare Services Organization

Trillium’s client is a Healthcare Services Organization that has experienced a great deal of expansion and growth.  This has stretched its technology infrastructure and services, and the organization found itself unable to focus on executing its long-term product strategy.  The client’s growth has outpaced its technology’s ability to scale to its growth patterns, impacting its customer satisfaction and retention.  Overwhelmed support teams have had difficulty responding to, triaging, and determining causes to repair system outages, which were often caused by software and infrastructure changes.  Further, the operations area was not able to respond to and support customers per SLAs.

How We Solved It

Trillium reviewed the client’s technology enterprise to best determine a path forward.  The analysis included identifying root causes of the challenges related to infrastructure, architecture, development, and operations organizations; developing a 30/60/90-day stabilization plan; and, driving the cross-functional stabilization initiative throughout the organization.

Results

  • Reduced outage frequency by 92%
  • Increased compliance with SLAs from 35% to 87%
  • Achieved stability necessary to allow the organization to execute on its long-term product strategy
  • Allowed technical resources to shift from fire-fighting to new product development

Download this Success Story »

Improving Privacy and Security at a Hospice Provider

Trillium’s client is a hospice provider that had recently completed the merger of three (3) long-term care organizations.  Through that merger, the hospice provider experienced a great deal of expansion and growth, and, thus, has undertaken a significant effort to consolidate and standardize its security and privacy processes.   

The merger of Trillium’s client from 3 organizations into a single entity presented challenges that required remediation, both from a managerial and technical perspective.  Prior to the merger, each organization had its own set of IT systems, policies, and procedures, causing staff confusion in the merged organization, resulting in selective adherence to the governance processes.   

Also, staff in the merged organization did not have an adequate understanding of regulatory gaps within the technology ecosystem, and did not have a standardized risk management approach.  Knowledge and documentation gaps in the merged organization risked the client’s ability to pass a Federally-mandated HIPAA audit, failure of which could result in significant fines.   

How We Solved It

Trillium worked with corporate management and support teams to analyze the client’s technology landscape, including documenting the current state of technology governance, baselining the organization against industry standards, and identifying and prioritizing privacy and security gaps.

Trillium’s resulting assessment included an understanding of security and privacy needs of the organization, creating and driving a remediation roadmap, creating a common language for governance, and training the client’s team on common governance and HIPAA tracking.

Results

  • A single set of documented privacy and security policies and procedures for the merged organization, resulting in policy clarity and consist
  • Established a common Risk Management Language and Tracking Framework for HIPAA compliance
  • Passed the HIPAA security and privacy audit