A Practical Guide to DESIGNING SECURE HEALTH SOLUTIONS Using Microsoft Azure

Health industry startups, system integrators (SIs), independent software vendors (ISVs), and healthcare organizations considering a move to Azure are looking for guidance in designing and operating solutions that incorporate security controls to help them meet their compliance obligations.  This paper provides insight into how Microsoft meets its compliance obligations on the platform and presents best practices and security principles that are aligned to International Organization for Standardization (ISO) 27001, Microsoft’s Security Development Lifecycle (SDL), and operational security for Microsoft online services.