Midi Health is a women’s healthcare technology company that delivers a virtual care platform designed for those experiencing perimenopause and menopause.
“Right now, we’re the only people doing this,” says Ted Robinson, director of IT. “It’s a pretty amazing company to be a part of. We’re leading the way and making such a big impact. We are changing people’s lives, and that’s amazing.”
Founded in 2021 and headquartered in Menlo Park, California, Midi Health has 600 employees, with plans to add an additional 100 headcount by the end of 2025. In April 2024, Midi Health closed a $60 million Series B round, bringing its total funding to $100 million.
Building a secure IT environment from the ground up
When Robinson joined Midi Health as IT manager in May 2023, he was the company’s 48th employee. Coming into a greenfield environment, he was able to plan out and implement infrastructure of his choosing.
“At the time, we were 100% BYOD,” Robinson says. “We didn’t have any actual directory services that tied everything together. We just used Google Workspace as a directory.”
Choosing JumpCloud as the core of a brand-new environment
Having used JumpCloud at a previous company, Robinson knew it would be the perfect tool to architect an environment around.
“I figured if we could have JumpCloud be the central point of contact for all of our different environments, we could build out something that’s very scalable and sustainable,” he continues.
So, the Midi Health team opted to do precisely that, and they haven’t looked back since.
Keeping sensitive healthcare data safe & ensuring compliance
As a company that operates in the healthcare space, Midi Health needs to keep all sensitive HIPAA-protected data safe and all company resources secure. Using several JumpCloud features in tandem, that task is much easier to accomplish.
For starters, the company is leveraging JumpCloud’s single sign-on (SSO) capabilities to ensure only authorized users can access applications.
The documentation that JumpCloud has about SSO integrations with all these other applications is awesome. Most of the time, it’s way better than the application we’re trying to integrate with. That was a big part of us being so successful and quickly connecting all these different apps through SSO.
Ted Robinson, director of IT
Additionally, the team is also using JumpCloud for mobile device management (MDM), multi-factor authentication (MFA), and certificate management for WiFi access.
Accelerated onboarding
Using JumpCloud’s zero-touch enrollment capabilities, the Midi Health team is able to ship MacBooks to employees without having to lift a finger.
“That person could connect to WiFi immediately, and that computer is managed,” Robinson says. “Windows is a little different; we have to load the agent. But even that is very lightweight. Just connect to WiFi, click on JumpCloud, enroll it, then they are deployed. With that, they get our set of security policies, they get our applications, and we don’t have to do anything at that point.”
The team also uses commands to execute scripts remotely. For example, they push out time-zone changes to devices without having to elevate user privileges even temporarily.
“We never have any person as a local admin on their machine,” he continues.
Streamlined IT operations with groups
Midi Health is using user groups and device groups to streamline IT operations and protect sensitive resources.
“We manage our application access through certain groups, and we manage the access of certain devices through different groups,” says Adrian Valencia, an IT support specialist at Midi Health. “A lot of our policies are based around groups as well. We have a lot of static groups and we also have a few dynamic groups based on either the type of device that you are using or the applications that your department should get.”
The company is also starting to roll out role-based access controls.
“We’ve kind of moved to role-based access control where we separate people out completely and they get a set of permissions and access to programs based on their actual role,” Robinson explains. “So it’s less overhead management to even just set people up and get them assigned to the correct things.”
Conditional access
Midi Health also uses conditional access policies to ensure employees are only able to access company resources using company devices, further securing its environment.
We have a conditional access policy that will allow users to enter our environment using JumpCloud-managed devices. If they are not using a JumpCloud-managed device, it denies them access to the applications inside the user portal.
Adrian Valencia, IT support specialist
To fulfill their mission, Midi Health uses a web-based healthcare platform; access to it is managed through SSO in JumpCloud.
“We were able to restrict logins to only from JumpCloud devices, and that was really a game-changer for us and ensuring that the only people that access our resources are using a computer that has anti-virus fully up to date and that they’re a current employee,” Robinson says. “We were able to enforce a bunch of other policies behind that that we could then show our partners, show our HIPAA certification, and ensure that the only people that are accessing our programs are the ones who meet our security policies.”
Compliance made easy
Each year, Midi Health employees need to complete an annual HIPAA training. Using JumpCloud, Robinson and his team are able to ensure everyone complies.
“If they haven’t completed their training, we’ll actually put them in a quarantine group where they only have access to the JumpCloud portal and the training,” he says. “They can’t even rejoin our environment until they have completed the training.”
Though the team hasn’t had to remotely wipe any devices yet, they have used the remote lock capabilities on occasion.
“Within seconds, it locks down the device and secures it,” Valencia says. “That’s awesome.”
Directory Insights & System Insights
The Midi Health team uses Directory Insights and System Insights to make sure the environment always operates in optimal condition. For example, they can determine at a glance where any orphan devices are, whether SSO connections are functioning properly, and if there are issues with people logging in.
“We also use it just to ensure that people were suspended in a timely manner,” Valencia continues. “If their contract ends on the 15th, we want to ensure that they were suspended on the 15th and we can verify that easily.”
Patch management
Midi Health uses patch management to automatically enforce updates, ensuring everyone’s device is protected.
Not only is our environment the most up-to-date environment of any company I’ve ever worked at, we have had seriously less problems.
Ted Robinson, director of IT
“We can prove compliance using the device portal and show that all of our computers are on the most recent patch level. That’s awesome for us. And that hasn’t changed as we’ve gone from 10 computers to over 900 devices,” Robinson says.
Remote Assist
The Midi Health team leverages Remote Assist to ensure that employees stay productive all day long. When users have issues, the IT team often takes the “let me just do it for you” approach by remoting in and fixing the problem on their own without having to talk someone through a fix.
“Since we’re a large healthcare provider, our clinicians are scheduled very tightly and only have a few minutes between patients,” Robinson explains. “Our goal is to drive patient satisfaction and we’re using tools like Remote Assist to make sure that clinicians stay on schedule. We use it to make sure that they meet that next appointment without having to reschedule.”
Premium Support
Whenever it comes to any piece of technology, it’s only a matter of time before users and even IT admins need a helping hand. Thanks to JumpCloud’s Premium Support, the Midi Health team has been able to easily navigate any issues that have come their way.
“I think one of the most powerful, best things about JumpCloud is the Premium Support,” Robinson says. “It is by far the number-one reason why we renew with you guys every year with the package we do. The text-based support is helpful. It’s fast. It’s easy to use. It is by far the best support of any of the companies that we pay for support. I just haven’t felt that support from a company before to where it’s like, you’re invested as we are to solve these problems and not just give us an answer to go away.”
With JumpCloud, the Midi Health team has an IT management tool that meets their needs today and in the future.
“Everything JumpCloud is rolling out is stuff we’re looking to do and it aligns with where we want to go,” Valencia explains.
For Robinson, JumpCloud’s features help the organization continuously reduce its administrative overhead. So when each new feature rolls out, the team is eager to test them out.
“When JumpCloud releases a new feature, we want to know about it right away so we can immediately add it to our planning,” he says. “If a new feature looks like it’s going to be useful for us — and I mean, most of the things that JumpCloud has released are — we’ve added it.”
About JumpCloud
JumpCloud® delivers a unified open directory platform that makes it easy to securely manage identities, devices, and access across your organization. With JumpCloud, IT teams and MSPs enable users to work securely from anywhere and manage their Windows, Apple, Linux, and Android devices from a single platform.
To see the power of JumpCloud yourself, request a demo or start a 30-day trial today.