DHS adopting secure cloud requirements
With the DHS's requirements under the Secure Cloud Strategy, applicable Australian software companies will be required to complete an accreditation and compliance process.
The mandatory policy applies to all third parties using cloud services that connect with the department to deliver services such as Medicare, PBS, DVA, NDIS, MyHealthRecord, Aged Care and Child Care.
The accreditation process includes achieving Australian Signals Directorate Certified Cloud Services List (CCSL) Certification, as well as an assurance that all data remain onshore within Australian jurisdiction.
In addition, the strategy highly encourages physical separation of server infrastructure, and policies restricting access to private citizens' data to those with a Negative Vetting 1 (NV1) security clearance from the Australian Government Security Vetting Agency (AGSVA).
The compliance deadline has recently been moved from a fixed date in April to be tied to individual product accreditation renewals.
To help healthcare software providers ensure compliance with the new requirements, Macquarie Telecom subsidiary Macquarie Cloud Services has bolstered its Launch Health Cloud product offering with upgraded functionality.
The company is also planning to hold a series of information sessions to provide advice about the new medical software accreditation requirements, starting with an event in Sydney on 21 March.
More than half of Australian businesses surveyed by Thales are finding it harder to manage...
Google Cloud has announced three new regions to meet growing demand for cloud services in...
A new ESG management solution aims to provide Australian brands with support for their evolving...