Saviynt Spotlight: Comprehensive Access Governance and Compliance for Epic


A large number of healthcare organizations rely on Epic EHR to manage patient data. Organizations must employ the right Identity Governance solution and processes to govern access to patient data, and help meet regulatory and compliance requirements.

The session was headed by Vinit Shah and Jason Gzym and they discussed how Saviynt provides a comprehensive integration with Epic to improve security, reduce risks and effectively address regulatory requirements (HIPAA, HITECH, Meaningful Use) through compliant provisioning, intelligent access reviews, SOD analysis & management, template design & management, transport to provision templates and roles, etc.

Areas covered-

  1. Integration and architecture overview
  2. Importing data from Epic
  3. Provisioning and de-provisioning of access
  4. Achieving compliance with SOD management and analytical controls

Additionally some of the unique features such as privileged access management, Break the Glass review, security control testing were briefly discussed. 

Recorded on 19th July 2018


Jason Gzym
Sr. Solutions Engineer

Vinit Shah
Director of Product Management