Global Healthcare Exchange (GHX) operates the largest cloud-based supply chain network in healthcare - a digital ecosystem connecting over 18,000 facilities with suppliers and distributors. The attack surface is massive: the platform processes more than 166 million purchase orders and invoices annually, handling the transactional backbone that moves products and money through the U.S. healthcare system. When that pipeline is disrupted or compromised, the consequences aren't theoretical - they ripple through hospital operations at scale.
GHX has been building this network since 2000, growing it into infrastructure that generates over $2 billion in annual industry savings. The GHX Supply Chain Platform spans value analysis, clinical evidence, automated ordering, inventory management, electronic invoicing, and vendor credentialing. Security here means defending a cloud-native system where every integration point - every supplier link, every automated order, every credential verification - is a potential vector, and where data integrity directly affects what shows up on a hospital loading dock.
Technical domains across the company include cloud-based supply chain networks, intelligent automation, data-driven insights, and digital ecosystem integration. The threat model is broad: securing high-volume transactional data, protecting sensitive provider and supplier relationships, maintaining uptime on a platform where downtime has real-world clinical supply consequences, and defending a sprawling digital ecosystem that touches thousands of organizations. The work is infrastructure-grade security for a network that healthcare actually depends on.