Case Study: Healthfirst strengthens Zero Trust and identity security with CyberArk

Healthfirst Applies an Identity Security-first Approach to Implement Zero Trust

Healthfirst, the largest not-for-profit health insurer in New York State, faced the challenge of securing rapidly growing operations, including sensitive member data, 10,000 endpoints, and a cloud-first environment with 70% of systems in the cloud. With identity at the center of its Zero Trust strategy, Healthfirst turned to CyberArk to strengthen privileged access and protect users, systems, and development workflows.

CyberArk implemented a broader Identity Security approach for Healthfirst, expanding beyond Privileged Access Manager and Vendor Privileged Access Manager to include Secrets Manager and CyberArk Identity with SSO, MFA, and federation capabilities. The results included stronger Zero Trust controls, improved security across the environment, reduced tool sprawl, lower licensing costs, and greater operational efficiency by consolidating identity protection into a more cost-effective platform.

Healthfirst

Brian Miller

Chief Information Security Officer