Pete Nicoletti Director of Security Solutions Virtustream

Virtustream, the enterprise-class cloud software and services provider, has announced that its Infrastructure as a Service (IaaS) offering is HIPAA compliant, meeting the federal standards for privacy, security and breach notification in the handling and storing of healthcare records.

As a HIPAA-compliant cloud services provider, Virtustream has taken action to help organizations worldwide host and protect critical assets and information in the cloud.

Many enterprises and government agencies worldwide rely on Virtustream’s cloud services to build, run and offer a highly secure environment for hosting critical assets and information. HIPAA compliance affirms Virtustream’s commitment to meeting the highest levels of compliance in the healthcare industry.

“Security of our client’s data and environments is Virtustream’s top priority,” said Pete Nicoletti, chief information security officer, Virtustream. “A number of our clients are hosting or intend to host employee or customer healthcare data in the cloud, and the security of highly sensitive information like patient records cannot be vulnerable. Healthcare enterprises and other clients with HR and medical records can confidently select our services knowing that we have the proper controls in place to safeguard their information.”

Virtustream’s HIPAA compliance, formalized through a third-party audit, is further exemplifies the company’s rigorous focus on privacy, security and compliance. The certification also validates that Virtustream can ensure the confidentiality, integrity and availability of critical assets and information to its customers. The audit is available under NDA in its entirety, as Virtustream offers all third-party audit details to its clients.  Virtustream has also established the Virtustream “HIPAA RACI Responsibility Program” to empower its customers to better understand, define and agree to co-managed responsibilities and accountability to ensure that all controls are in place and comply with the law.

For businesses, cloud service providers and government agencies, only Virtustream enterprise-class cloud solutions meet the security, compliance, performance and efficiency requirements needed to migrate and manage the most complex mission-critical applications across hybrid, private or public cloud environments. To assist customers in meeting diverse compliance requirements, Virtustream complies with HIPAA, PCI, FISMA, ISO 27000, SSAE and SOX standards.

About Virtustream
Virtustream is the enterprise-class cloud software and service provider trusted by enterprises worldwide to migrate and run their mission-critical applications in the cloud. For enterprises, service providers and government agencies, only Virtustream's xStream™ cloud management software and Infrastructure-as-a-Service (IaaS) meet the security, compliance, performance, efficiency and consumption-based billing requirements of complex production applications in the cloud - whether private, public or hybrid. The company is headquartered in Washington, D.C. with offices in San Francisco, Atlanta, London, Geneva, Dubai, Lithuania and Pune. Virtustream owns data centers in the U.S. and Europe with service provider partner data centers in Latin America, the Middle East and Asia.