Success Stories

Our client’s success in meeting their goals is our most important objective.

Security Certification for an Insurance Payment Integrity Consulting Firm

Trillium’s client is an insurance payment integrity consulting firm.  Due to the client’s expanding customer base and concerns with HIPAA data concerns, specifically related to protected health information (PHI,) the client wanted to obtain an expanded security certification with the Health Information Trust Alliance (HITRUST.)     
 
To obtain the HITRUST certification, the client needed to complete numerous activities in a specific timeframe related to the Common Security Framework (CSF) created for organizations that create, share, store or access sensitive or regulated health data.  The client created tickets in their issue management system for several hundred activities.  As the deadline for completion approached, the client determined they needed assistance with issue resolution to close out the remaining open items.

How We Solved It

Trillium to brought rigor and organization to the open item (ticket) resolution process.  Tickets were related to physical and cyber security, CSF policies and procedures, and documentary evidence that HITRUST requirements were being met by the client.  We reviewed the remaining open items (tickets) to determine the level of expertise needed to remediate the tickets, and drove the remediation of approximately half of the remaining tickets, while also assisting on activities where multiple activities were required.  Trillium ensured that the tickets were remediated on time so that the onsite inspection by HITRUST could be scheduled for final approval.

Results

  • Client’s technical and physical security was enhanced by meeting HITRUST requirements
  • A nominal number of open tickets were completed on time by creating CDF policies and procedures, documenting PHI security, and providing doc
  • Client was able to schedule the final site visit to obtain HITRUST certification so they can attract future clients for their services

Download this Success Story »

Improving HIPAA Security in a Rapidly Expanding Space

Trillium’s client is an insurance payment integrity consulting firm with a rapidly expanding client base, creating an increased risk profile for data under its control. That growth, along with customer concerns about data security, caused the client to seek outside assistance in reviewing and auditing its physical and cyber security.  Several factors contributed to the client’s concerns about security, including: a lack of security tooling or data; a soft security roadmap requiring review and remediation; existing improvements to security and analytics were neither aligned nor prioritized within the technology landscape; inconsistent HIPAA documentation; and, concerns about business continuity.

How We Solved It

Trillium reviewed and assessed the current state of the client’s security processes and technology, and drafted a risk reduction plan.  Aspects of the project included: executing a HIPAA assessment security framework; creating a security risk assessment worksheet; creating a document laying out the highest priority tasks and a security roadmap; and, benchmarking risks compared to industry averages.

Results

  • Documented remediation has the potential to substantially reduce the client’s security risks
  • Client has a path forward for consistent HIPAA documentation
  • Customers and potential customers will have greater confidence in the client’s data security and privacy

Download this Success Story »

Maturing Cyber Security in a Rapidly Expanding Software Space

Maturing Cyber Security in a Rapidly Expanding Software Space

Trillium’s client is a software and analytics company that had a rapidly expanding client base, creating an increased risk profile for data under its control. In addition, existing customers had security concerns about data loss, creating a financial and reputational risk for the client.  Security concerns have also caused lengthened sales cycles for the client.  Several factors contributed to the client’s concerns about cyber security, including a lack of security tooling or data; a soft security roadmap requiring review and remediation; and, existing improvements to security and analytics were neither aligned nor prioritized within the technology landscape.

How We Solved It

Trillium reviewed and assessed the current state of the client’s cyber security processes and technology, and begin a risk reduction plan.  The project baselined the client’s cyber security against industry standards, analyzed tactical risks of the current state, and identified a remediation approach to the security risks.  The risk-reduction program was aligned to the client’s product roadmap.

Results

  • Product improvements aligned with security risk-reduction initiative
  • Risk-remediation reduced risk by 20% in the first 3 months
  • Sales team closed the sale on 2 large accounts by addressing security concerns

Download this Success Story »

Streamlined Printer Operations Management using Zero-Based Budgeting

Streamlined Printer Operations Management using Zero-Based Budgeting

Trillium’s client is a large international food distribution organization that serves a large portion of the USA.  Numerous brands are distributed under this umbrella company.  While the company has been experiencing significant growth through acquisition in the last several years, it has also undertaken a substantial effort to consolidate numerous technology areas within the organization.  The company wanted to identify and understand all aspects of its print operation to align with a directive to reduce printer volume, consolidate vendors and support, and control expenses through centralizing the purchasing, leasing, and support of its print devices at over 1000 sites nationally. 

However, the client needed to identify its inventory of printers, vendors, and contracts; it had also issued a Request for Proposal for print leases and services that required analysis.  The client was also instituting Zero-Based Budgeting (ZBB) and directed that printer acquisition requests be included in that process.  To execute on that strategy, the client needed a broad skillset including operations and project management to work with the project team.

How We Solved It

An overall project management and operational strategy was conducted to assess the organization’s overall printing environment to reduce printer volume, consolidate operations, and reduce cost. The Client engaged Trillium to review its print technology operation with an eye toward consolidating services soon.  Trillium worked with corporate management and support teams as well as coordinating with numerous departments to jump start the analysis of the landscape.  The client had previously issued a Request for Proposal (RFP) for print leases and attendant services, and required an analysis of those responses.  In addition to analyzing the responses, Trillium validated RFP information and costs, updating them as needed.  Trillium also worked on obtaining specific information on printer sites, including site visits and interviews, to gain comprehensive information on printer counts, contracts, and maintenance costs to begin to renegotiate existing contracts at reduced costs.  Trillium then assisted the client with negotiations for a Master Services Agreement with the finalist vendor and attendant Statement(s) of Work.  ZBB procedures were used for acquisition of new printers.

Results

  • Impact of the current print environment compared to the future environment will realize significant financial saving
  • New standard acquisition processes including ZBB will give the client more control and visibility over its print environment.
  • New processes will be extended to the client’s international operations.

Download this Success Story »