Compliance

connection graphic

 

Secure perimeter

Compliance is determined by the UArizona HIPAA Privacy Program office through a stringent authorization to operate request process. Soteria operational compliance is jointly managed by the Information Security Office and the Research Technologies office. Prior to use, each service offered within the Soteria secure perimeter must have an “authorization to operate request” approved by the HIPAA Privacy Program office.

The Soteria secured perimeter prevents public internet and non-authorized access to the resources housed inside Soteria.  Access to Soteria is limited to authorized researchers who have the requisite training and approved projects.

All resources and tools provided as part of Soteria are protected from the public internet and can only be accessed through a dedicated VPN connection. This allows researchers to work from anywhere using their own devices once they are granted access to Soteria. Users log in using their UArizona NetID and connect using the Cisco VPN client.  Once connected, they can access the specific Soteria resources and services to which they have been granted access.

The UArizona High Performance Computing (HPC) is housed in the Research Data Center at UArizona and is managed and maintained by the Research Technologies staff.

Governance

The Soteria Access and Governance Committee is a standing committee with the purpose of providing long-term management and oversight of Soteria. The committee members represent the Internal Review Board, HIPAA Privacy Office, University Information Technology Services, and University of Arizona Health Sciences.

Soteria Access and Governance Committee
  • Nirav Merchant, Director, Data Science Institute
  • Jeremy Frumkin, Senior Director, Research Technologies
  • Ryan Duitman, Information Technology Project Manager
  • Vern Pilling, "Honest Broker",  Director, Biomedical Informatics Services, Center for Biomedical Informatics & Biostatistics
  • Mariette Marsh, Assistant Vice President for Regulatory Affairs and Safety, UArizona Research, Innovation & Impact; HIPAA Privacy Program Office / IRB
  • Elisha Johnson, Director, Clinical Trials and Contracting, UA Health Sciences Research Administration

Secure. Share. Soteria.

If your research involves PII or PHI, Soteria is for you. Get started by filling out an application with your IRB status. If you’re still in the IRB process, we can help you demonstrate to the board how you’ll safeguard data with Soteria.

GET STARTED