From Fragmentation to a Unified Cloud: How a Health Insurer Secured its Future on AWS with SourceFuse

Modernizing Legacy Infrastructure for a Secure, Scalable, and Compliant Future in Healthcare

Case Studies

Overview

A major health insurance provider in India was hampered by a decentralized, costly, and complex legacy IT setup spanning on-premises infrastructure and over 20 fragmented AWS accounts. This environment created security gaps, performance bottlenecks, and limited their ability to scale.

SourceFuse partnered with the insurer to execute a comprehensive cloud transformation. The solution involved implementing a centralized, security-first network architecture (unique Ingress/Egress model), migrating and modernizing core applications to managed AWS services (like Amazon Aurora), and integrating advanced DevSecOps automation.

This transformation delivered immediate, measurable results: significant cost reduction, a dramatically improved security posture, and a resilient, compliant foundation for future growth and regional expansion.

The Challenge

The health insurer’s fragmented infrastructure was severely restricting its operational efficiency and growth potential:

  • Fragmented Management: Decentralized network management across 20+ AWS accounts led to inconsistent security policies and high operational complexity.
  • Cost Bottlenecks: Reliance on expensive legacy on-premises infrastructure, including unmanaged databases and Windows-based workloads, drove up costs and hampered performance.
  • Security & Visibility Gaps: A lack of centralized governance made it difficult to monitor traffic, increasing the risk of security breaches in a highly regulated industry.
  • Scalability Limitations: The architecture wasn't built for modern scale, making new application deployments slow and inefficient.

The Solution

SourceFuse delivered a multi-phase solution focused on centralization, modernization, and automation:

  • Centralized Networking & Security: Implemented an AWS Transit Gateway hub-and-spoke model and a unique Individual Ingress/Central Egress architecture, routing all outbound traffic through centralized Palo Alto NGFWs for unified policy enforcement.
  • Migration & Modernization: Successfully migrated 15+ core applications to AWS. Modernized workloads from Windows to RHEL Linux to cut licensing costs and transitioned unmanaged databases to Amazon Aurora for enhanced performance and reduced overhead.
  • Automation & DevSecOps: Established a centralized Jenkins CI/CD pipeline and used Terraform (IaC) to ensure fast, secure, and repeatable deployments.
  • Compliance & Resilience: Set up an AWS Control Tower Landing Zone for streamlined governance and built a robust hybrid network with AWS Direct Connect and a strong Disaster Recovery (DR) capability for business continuity.
DOWNLOAD PDF

Results

The modernization delivered measurable outcomes across key business metrics:

  • 35–40% Reduction in Operational Overhead through automation and managed services.
  • Enhanced Security & Compliance with centralized egress and consistent policies.
  • 3x Faster Deployments via automated DevSecOps pipelines.
  • Improved Performance & Reliability with managed AWS databases and modernized workloads.
  • Resilient Operations with a hybrid network and disaster recovery capabilities, ensuring business continuity.

Technologies & AWS Services Used

AWS Services:

  • AWS Transit Gateway
  • AWS Direct Connect
  • Amazon Aurora
  • Amazon EC2
  • Amazon VPC
  • ALB/NLB, Amazon S3
  • Amazon EFS
  • Amazon ElastiCache
  • Route 53
  • IAM Identity Center
  • AWS Security Hub
  • AWS Config
  • AWS Secrets Manager
  • AWS CloudTrail
  • Amazon CloudWatch
  • VPC Flow Logs

Technologies:

  • Palo Alto NGFWs
  • Jenkins
  • Terraform
  • RHEL Linux
  • Coralogix
  • New Relic

Download Case Study PDF

Learn how this health insurer achieved a 35-40% cost reduction and a secure, 3x faster cloud foundation.