About the Customer
iCare Health Solutions is a leading industry player in health benefits administration and eye care technology, operating across a distributed network of storefronts and offices. With a growing workforce accessing sensitive patient data daily, iCare needed a virtual desktop environment that could scale with the business while meeting the stringent security and compliance requirements of the healthcare industry.
Customer Challenge
Legacy Citrix VDI Creating Latency, Security, and Scalability Concerns
iCare Health Solutions was running a virtual desktop model on the Citrix platform, but the environment was creating significant operational challenges. Increased latency was impacting patient interactions, security concerns around critical client information were growing, and the cost and complexity of maintaining the Citrix infrastructure required a dedicated team of skilled professionals.
Patient information stored on machines across storefronts and offices made each personal device a potential risk. With a complex network of applications and industry compliance requirements — including HITRUST and HIPAA — iCare needed a more scalable, reliable, and secure virtual desktop model.
The core challenges included:
- HITRUST and HIPAA compliance requirements across all desktop environments
- Rapid user onboarding to support large acquisitions
- USB device security concerns with data stored on local machines
- VDI scalability and cost of the existing Citrix environment
- Disparate end user compute experiences across locations
Partner Solution
Cloud-Native Virtual Desktops with Centralized Security on AWS
Atayo designed and executed a migration from Citrix to AWS Workspaces, delivering a cloud-native VDI platform with superior reliability, performance, and cost savings. The solution leveraged iCare's existing AWS footprint to accelerate the transition.
Key components of the solution included:
- Amazon WorkSpaces for fully managed virtual desktops, reducing operational burden and eliminating the need for a dedicated VDI infrastructure team
- AWS VPC with secure private Workspaces deployment, isolating the desktop environment within a controlled network boundary
- AWS Control Tower enforcing EUC network, security, and compliance baselines across the organization
- AWS Directory Service with AD Connectors for smooth integration with Microsoft Active Directory, enabling simplified user authentication
- FSLogix supporting a seamless user experience across virtual desktop sessions
- AWS Network Firewall and AD integrations to enforce necessary network and security boundaries
- AWS KMS for robust encryption, safeguarding data at rest on all deployed desktops
- AWS VPC and Workspace certificates ensuring secure, encrypted in-transit communication between AWS services and on-premises resources
- Centralized identity management and MFA using DUO for virtual desktops, network firewall, and AD integrations
- AWS IAM enabling precise access controls and centralized user permission management
- AWS CloudTrail for comprehensive audit logging and compliance tracking
“AWS Workspaces has improved our ability to support the rapid scale of the organization with improved security and stability as compared to our previous Citrix deployment.”
About the Partner
Atayo Group is an AWS Advanced Consulting Partner specializing in cloud migration, managed infrastructure services, cloud security, and data intelligence. Headquartered in Tampa, FL, Atayo delivers end-to-end cloud solutions for healthcare, financial services, and enterprise customers across North America. Atayo holds AWS competencies in Migration and Healthcare, and is recognized as an AWS Well-Architected Partner.