SISOnline System Architecture
The SISOnline system design follows industry best practices, including an architecture that separates the user interface and logic/business rule layers. The system architectures underlying the application are sound, using a common 3-tier architecture, a web browser to pass data to the middle (or application) tier, and rendering responses from the middle tier visually. An application (middle) tier consists of code executed both on demand from clients, and separately to service other needs (e.g. calling a web service to retrieve data). The third is the storage tier, responsible for keeping, sending and retrieving data. The central repository uses Microsoft’s SQL Server, though a data management layer allows for other databases such as Oracle. This architecture simplifies maintenance, providing flexibility for future requirements. The application is as lean as possible so all resources are effectively utilized (database connection pooling, identifying and removing bottlenecks, et cetera).
System Customization Approach
Over 7 states and provinces have integrated SISOnline into their existing information systems providing users with a seamless, single login experience. The SISOnline Web Service (XML based) allows data to be retrieved real time. Strong rollout strategies involve all stake holders in developing the program, and hence need strong communication plans to ensure clear understandings of all aspects of the program.
Custom implementation plans are defined based on each customer’s needs. If the objectives are to improve staff planning to quantify the frequency and intensity of support needs, additional data on living situation and what time of day the supports are needed are important. If integrating multiple assessments into one interview, adding items within a particular section may be helpful. Work flow issues arise with managing resource allocation. Another common goal is to ensure an objective assessment of the support needs of the individuals and use that as a basis for distributing available funds fairly. To ensure the customization work meets the enterprises requirements, a detailed requirements document is recommended that can be reviewed, adjusted, and approved before beginning the implementation work. A requirements document defines the functionality of the systems, including security, administrative control, reporting, business rules, and data models that define the types and lengths of fields to provide rigorous data validation during data entry.
SISOnline Security
As a supplier of health related information services, A.J. Boggs protects the privacy and security of all patients’ Protected Health Information (PHI), and protects that right to the extent necessary under current laws and regulations, including the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (“HITECH” Act), which protects electronic records of health-related information on an individual as it is created, gathered, transmitted and stored. SISOnline ensures security requirements are met, including: administrative processes, physical (e.g., data center) security, patch management (to operating systems, network equipment, and other data application services), data backup and recovery processes, virtual private networks management, and firewall protection. These security measures are part of our processes to assure compliance with the US Government’s Privacy Rule (45 CFR Parts 160 and 164) that implemented the HIPAA of 1996.