HIPAA compliance for the Mainframe


Orion implemented end-to-end lineage for COBOL /JCL using the Orion Enterprise Information Intelligence Graph (EIIG) to ingest multiple COBOL/JCL systems, show cross-system lineage with SSIS, Informatica, for consumption by both IT and Business users.

Business Problem

Establish enterprise governance program for HIPAA (Health Information Portability and Accountability Act) compliance. Provide traceability of information flow for business critical data elements to auditors.

The Solution

Orion’s Enterprise Information Intelligence Graph (EIIG) ingested the Mainframe code and provide traceability for PHI (Personal Health Information) and PII (Personally Identifiable Information) across 3 large Mainframe systems in less than 30 minutes.

Business Benefits

The first fundamental step in governing your information assets incl. mainframe is: “know your data”. This engagement provided full visibility of information assets, enabling business users better understand the information available to make informed decisions. The Business was able to provide traceability of HIPAA data elements, when they were audited.

Cost Savings

The ability to generate near real-time traceability saved the customer hundreds of thousands of dollars in resource costs and offset penalties that would have otherwise arisen from non-compliance.