The Sanitas customer portal enables policyholders to handle their insurance matters electronically via the Internet. The focus on user-friendliness and IT security, which has continued from the start of implementation to the present day, is paying off: The portal is actively used by policyholders. The customer portal project shows how the requirements for usability and the effective protection of confidential information can be successfully reconciled with a web application firewall of the latest generation.

From the Sanitas login to the details: focus on user-friendliness

Sanitas insures people of all ages, backgrounds and educational levels. The ease of use of the customer portal, even without PC knowledge, is therefore central. The focus was on user-friendliness: from the login to the individual functionalities.

Wide range of functions in the Sanitas customer portal

All important information and functionalities are available in the customer portal: This includes personal data, overviews of current insurance cover, doctors’ bills with the corresponding benefit statements and details of payment transactions.

Sanitas as an example of IT security in the insurance industry

Since sensitive customer data can be accessed via the Internet in the Sanitas customer portal , the use of adequate protection mechanisms is essential. Web-based applications must be carefully coordinated in terms of processes, organization and technology in order to meet the legal requirements in terms of data protection. Eliminating media disruptions, increasing convenience and enhancing security Sanitas implemented the customer portal with its outsourcing partner Swisscom. Thanks to the secure portal integration of adcubum’s standard insurance software (SYRIUS) and other services, Sanitas was able to create significant added value for its policyholders. Swisscom chose the USP Secure Entry Server® from United Security Providers to guarantee IT security. This protects against cyber threats and offers a wide range of options in the area of strong user authentication.

Conclusion from the new Sanitas login: Customer satisfaction – for sure!

The innovative customer portal enables Sanitas customers to process all relevant insurance transactions directly online. Thanks to the portal’s high level of user-friendliness, the service is actively used and greatly appreciated. Customer data is reliably protected at all times.

The result: customer satisfaction – for sure!

Interview with Reto Schmidt, Swisscom

Reto Schmidt, Head of Department Customer & IT Services Health Insurance, Swisscom

Together with Sanitas IT and your Swisscom team, you implemented the protection of the Sanitas customer portal. Why did Sanitas and Swisscom rely on the USP Secure Entry Server® (USP SES) from United Security Providers for projects with increased IT security requirements?

In the insurance environment, working with a specialist is the only option for us. Threats are constantly changing – the level of security must remain consistently high. This also allows us to focus on the core requirements of our customers, the actual business case. Cyber security is a must-have, there’s no need to discuss it.

As a web application firewall (WAF), the USP Secure Entry Server® checks the data traffic upstream. It only forwards valid requests to the customer portal. It detects, blocks and logs attempted attacks such as denial-of-service attacks, injections and other OWASP Top 10 risks. If a customer wants to offer additional digital services at a later date, they can protect these with the existing WAF. The level of security is much higher than if each service were to implement its own security features. The centralization of the WAF also simplifies maintenance – another aspect for cost savings on the customer side.

Why do you rely on the USP Secure Entry Server®?

The USP SES is a very reliable WAF, as Swisscom penetration tests have shown and analysts’ opinions confirm. In addition to security, the USP SES is characterized by its high flexibility and the wide range of modules for the applications to be protected. It offers an incredible amount in the area of authentication: multi-factor authentication, single sign-on for employees, federation, identity management – to name but a few.

What are the main advantages of working with United Security Providers for you?

The collaboration with USP is uncomplicated and efficient – and has been for years and in many projects. In the specific case of the Sanitas customer portal, for example, we have been working with United Security Providers and USP SES since 2012.

You can now rely on USP’s Managed Security Services.

Yes, USP’s Security Operations Center (SOC) now operates and monitors the web application firewall 24/7. There are absolute professionals at work, with well-established processes. Standardization through Managed Security Services allows us to further increase security and further reduce costs through increased efficiency. Our employees are extremely satisfied with the cooperation and the service desk at USP’s Security Operation Center.