10 Million Members. Six PKI Gaps. One Healthcare PKI Rebuild.
Customer Profile
Texas’s largest health benefits provider, serving ~10 million members through 150,000+ physicians and 500+ hospitals. Offers individual, employer, Medicaid, Medicare Advantage, dental, and vision plans, with over a century of service in clinical care and community health.
Industry
Healthcare & Health Insurance
Engagement Type
PKI Implementation & Infrastructure Deployment
At a Glance Outcome
10M
Members protected under the new PKI infrastructure150,000+
Physicians and practitioners secured across the networkHIPAA & FIPS
Compliance standards met through HSM key ceremony2-Tier
Microsoft PKI architecture deployed with offline Root CAThe Enterprise
Challenges
As the client's digital services expanded, six weaknesses in their hybrid PKI environment came into focus: an exposed Root CA, unprotected private keys, missing governance controls, and gaps in resilience planning.
Root CA online, domain-joined, and exposed
Private keys stored in file system, not HSMs
No key custodian matrix or separation of duties
Six gaps, one trust chain. Every weakness traced back to the same Root CA, so the fix had to start there, then rebuild outward.
Encryption Consulting Assessment Team
PRE-IMPLEMENTATION ASSESSMENT | ENCRYPTION CONSULTING · PKI SERVICES
Our Offered
Solutions
The engagement ran four workstreams across four phases: assessment and design, build and implementation, functional testing, and knowledge transfer.
Capability 01
PKI Architecture Design & Planning
Capability 02
HSM Integration & Key Ceremony
Capability 03
Two-Tier Microsoft PKI Deployment
Capability 04
DR Planning & Knowledge Transfer
The result was a compliant, resilient, and scalable PKI infrastructure, purpose-built to protect the sensitive health data of millions of members and support the organization’s growth for decades ahead.
Encryption Consulting Assessment Team
ENGAGEMENT SUMMARY | ENCRYPTION CONSULTING · PKI SERVICES
The Overall
Business Outcome
With the two-tier Microsoft PKI in place, the client closed the structural vulnerabilities, met HIPAA and FIPS requirements, and now has a security foundation that protects 10 million members and scales as the organization grows.
PKI trust chain fully secured
HIPAA and FIPS compliance achieved
Lifecycle control and resilience established
Discover Our
Latest Resources
- Blogs
- White Papers
- Videos
Education Center
All You Need to Know About DevSecOps Scaling
DevSecOps scaling extends automated security across every team and pipeline. Learn the benefits, challenges, six steps, tools, and 2026 compliance drivers.
Read more
White Paper
The Cert Wars: The Race Against Expiry
One expired certificate (cert) can bring operations to a halt. Discover how to prevent outages and manage certificate expiry before it impacts your business.
Read more
Video
The 2029 Convergence: Why Microsoft, Google, and Cloudflare All Chose the Same PQC Deadline
Explore expert insights on cybersecurity, PKI, and post-quantum readiness, with practical guidance to strengthen security and future-proof cryptography.
Watch Now
