Case Study: Blue Cross Blue Shield of Massachusetts achieves continuous compliance and streamlined security operations with Tufin

Blue Cross Blue Shield of Massachusetts - Empowering a Lean Security Team with Tufin

Blue Cross Blue Shield of Massachusetts (BCBSMA), the state’s largest health insurer with about 95% of its workforce relying on remote connectivity, faced a complex, multi-vendor hybrid network challenge. A lean network security team needed to automate policy management, centralize visibility across on‑premises, SDN and public cloud environments, and proactively identify and remediate security and compliance risks. BCBSMA turned to Tufin, deploying the Tufin Orchestration Suite, including SecureTrack, to address these needs.

Tufin provided topology and traffic visibility, continuous real-time monitoring, policy orchestration, and change-tracking/rollback capabilities. Using Tufin, BCBSMA now identifies risky rules and policy violations, produces regular compliance and risk reports for executives, and proactively remediates high- and critical-severity issues—improving audit readiness and tightening firewall and security group management. The automation from Tufin enabled the small security team to manage the complex environment more efficiently and accelerate changes (implementing changes in minutes instead of days).

Blue Cross Blue Shield of Massachusetts

Carlo Gardner

Security Engineer