Skip to main content

Plan your security journey with us.

Julia Eberl

Director Sales & Customer Success

Schedule a free consulation

How we built a secure cloud architecture for BHB’s vision of the digital hospital.

Securing identities, protecting sensitive data and laying the foundation for future-proof healthcare IT.

The challenge

Modern patient care depends on secure handling of health data. The Barmherzige Brüder (BHB) hospitals in Austria have just begun their journey into the Microsoft Cloud, asking themselves: how can we ensure information security is at the heart of it from day one?

To answer this, they started with a thorough Microsoft Security Assessment – laying the groundwork for safe cloud use, uncovering potential risks early on and ensuring compliance with strict regulations like DSGVO and the NIS directive. The goal: to tighten access controls, raise the Microsoft Secure Score for identity and device security, and keep daily hospital operations running smoothly for staff and IT teams alike.

The solution

To bring this plan to life, BHB chose us as its partner, trusting water’s experience with complex, security-critical cloud projects in healthcare and its ability to turn technical challenges into practical, real-world solutions.

Together with BHB’s IT team, we developed a clear concept for secure identities and access management with Microsoft Entra ID. Relevant user groups such as medical staff, admin teams and external providers were defined, and smart Conditional Access policies introduced to ensure that only trusted devices and multi-factor authenticated users can reach sensitive resources – seamlessly integrated into daily hospital routines.

At the same time, a robust plan for protecting sensitive data flows was designed using Microsoft Purview. A tailored labeling system and custom-fit data loss prevention (DLP) policies ensure that critical information stays protected at all times. The groundwork for rolling out Microsoft Defender for Endpoint has also been laid, setting the stage for comprehensive endpoint security in the next project phase.

The benefits

The first implementation steps have already delivered clear results: BHB’s Microsoft Secure Score has improved noticeably, and potential risks have been reduced early on thanks to clear guidelines and smart policies.

“When we decided to move into the Microsoft Cloud, it was clear: security and compliance can’t be an afterthought – they have to be part of every step. Together with water, we’ve built an architecture that meets today’s demands and provides a strong basis for the hospital of the future: digital, connected and highly trustworthy.”

Jürgen Mauko (Head of Data Center Department at BHB)

With this strong foundation, BHB is well prepared to expand its security posture even further. A clear roadmap, defined responsibilities and ready-to-activate measures ensure that patients, staff, and sensitive health data will remain protected – now and in the future.

Jürgen Mauko (Head of Data Center Department at BHB)
Jürgen Mauko (Head of Data Center Department at BHB)
Back to all cases

Contact us for a first meet up.

André Kraemer

New Business | Project Manager

Schedule a free consultation
By sending your enquiry, you consent to the processing of the data you have provided for the purpose of handling your enquiry in accordance with §13 DSGVO (data protection).
I would like to be informed by email about news and events of water IT Security.