Case Study

Magellan Health

Download PDF     See a Demo
Company Profile
Magellan Health
Fortune 500
Scottsdale, Arizona


Founded in 1969, Magellan Health is a Fortune 500 company healthcare management service in the United States. The company provides behavioral healthcare treatment and management services to health plans and other managed care organizations, employers, labor unions, various military and governmental agencies, pharmacies, and third-party administrators. The company is headquartered in Scottsdale, Arizona. Magellan employs over 11,000 people and generates over $7.3B in revenue.


Magellan’s data lake team was in the process of updating their environment to provide business user subject matter experts access to raw data with context for analytics, yet, being regulated by Health Insurance Portability and Accountability Act (HIPAA), the first challenge was that to identify a platform-agnostic masking solution for all the Protected Health Information (PHI) and Personally Identifiable Information (PII), also sometimes known as Personal Information (PI), across their disparate on-premises systems to first protect the privacy of all the individuals’ personal data.

During the evaluation process, the decision was made to migrate the data lake to AWS based on a top down initiative to modernize their outdated on-premises systems. A second challenge this decision brought was for the customer to find a security vendor that offered a variety of masking options for on-premises as well as cloud platforms.

Given the magnitude of the data to be migrated, the third challenge included securely migrating sensitive PI/PHI from various data stores to the AWS S3 bucket without any risk of violating HIPAA.

Up until that time, the customer’s data lake was strictly on-premises and using a manual scanning process to find their PHI/PI. They had employed a Delphix masking solution for on-premises RDBMS. Delphix proved unable to support the AWS cloud environments the customer needed, such as EMR and S3. It was clear to Magellan they would need to find a qualified enterprise software vendor already proven successful in partnering with AWS, who provides automated detection and masking solutions for sensitive personal data at scale in all their structured, unstructured, and semi-structured formats across the myriad of their on-premises and AWS environments and data stores, and assures secure migration so they will always be compliant with regulatory laws.

Use Cases:

Given the four critical technology challenges for Magellan to successfully modernize, securely migrate and manage their big data lake environment on AWS, Magellan was prompted to search for data security and privacy vendors online. The customer project lead readily found, reviewed, and contacted PKWARE. Based on the early conversations between Magellan and PKWARE, Magellan quickly realized that the unique PKWARE detection solution would be of tremendous value in their project. PKWARE would save them countless hours of manually sifting through their structured, unstructured, and semi-structured data stores to identify and locate PHI/PI. PKWARE fully automated obfuscation methods including masking functions, were exactly what Magellan were looking for and needed both for HIPPA and privacy regulations they are covered by, such as the GDPR for EU residents in the US and the CCPA for California residents. PKWARE monitoring with alerts and the PKWARE executive dashboard makes it straightforward for Magellan to automate adherence to their data management policies. After a rigorous and successful evaluation process, PKWARE was awarded the contract.

Magellan was able to automate everything required related to the PKWARE install. With the out-of-box PKWARE automated scripts, the customer was able to spin up PKWARE while creating their EC2 instance and install PKWARE Intrusion Detection and Prevention (IDPs) on the EMR clusters without ever having to look at the installers. The Magellan customer champion validated that Dataguise is the only company and set of solutions on the market that meets their needs.


Automated Data Detection at Scale
PHI and PI can lurk in unknown files in data stores. Manual scanning often misses those. HIPPA and privacy regulations require health care companies to locate all personal raw data. PKWARE automatically locates and identifies every element of sensitive data.

Automated Data Protection at Scale
During migration and once landed in the cloud, private and sensitive data is fully protected by PKWARE. Different elements of sensitive data may need to be protected using a variety of methods. PKWARE offers flexibility for customers to define their own data management policies or adopt standard policies and then encrypts or masks each element of data accordingly.

Flexibility for Today and the Future
Regardless what new markets and security or privacy regulations the customer will need to adapt to in the future, PKWARE solutions are able to meet the challenges. The technology includes intelligence that is adaptive, and PKWARE teams go all out to earn the trust and confidence of the customers.