Stackpad logo
Contact us

Modernizing Catch’s Healthtech Infrastructure for Compliance & Scale

How Stackpad helped Catch transform its infrastructure to meet CMS/EDE compliance, improve scalability, and reduce operational risk—while ensuring security policies met regulatory requirements.

The Challenge: Compliance, Scalability & Eliminating Risk

Catch’s healthtech platform enables independent workers to enroll in healthcare plans through a marketplace integrated with CMS/EDE. The platform required a full infrastructure modernization to remain compliant, secure, and scalable.

Several critical challenges needed to be addressed:

  • CMS/EDE Compliance: The existing infrastructure lacked audit-ready security policies and scalability required for ongoing compliance.
  • Legacy & Outdated Infrastructure: The system was running on unmaintainable legacy components that increased security and operational risks.
  • Policy Review & Updates: Compliance policies needed to be reviewed and updated to align with the latest CMS/EDE requirements.
  • Limited Governance & Security Controls: The existing cloud environment lacked centralized security policies and compliance guardrails.
  • High-Risk Migration: A complete infrastructure transition was required—without downtime or service interruptions for healthcare enrollments.

The Solution: Compliance-First Infrastructure Modernization

Stackpad worked with Catch to rearchitect the platform’s infrastructure, ensuring long-term compliance, security, and scalability.

1️⃣ Migrating to a Modern, Audit-Ready Cloud Infrastructure

We transitioned Catch’s infrastructure to a secure, maintainable, and compliance-driven cloud environment, improving governance and reducing operational complexity.

  • Established automated security guardrails to enforce compliance with HIPAA, CMS, and SOC2.
  • Implemented multi-account separation for production and development, reducing security risks.
  • Enabled centralized policy enforcement for IAM, networking, and data protection.
  • Improved system resilience, scalability, and maintainability for long-term growth.

2️⃣ AWS Control Tower for Centralized Security & Compliance

To enhance security and governance, we migrated Catch’s cloud environment to a Control Tower-managed multi-account structure. This provided built-in compliance, security monitoring, and lifecycle management.

  • Improved security posture with enforced policies across all cloud environments.
  • Reduced operational burden by automating compliance checks and security baselines.
  • Enabled audit-friendly infrastructure with logging, monitoring, and access controls.

3️⃣ Yearly Compliance Policy Review & Updates

As part of the modernization effort, we conducted an annual review of all compliance policies against the latest CMS/EDE requirements, ensuring continuous alignment with evolving regulations.

  • Reviewed policies against the latest CMS/EDE specifications.
  • Updated outdated policies to reflect new compliance and security requirements.
  • Ensured security, access control, and audit policies remained audit-ready.

The Results: A Secure, Compliant & Scalable Platform

  • ✅ CMS/EDE Compliance: The platform successfully passed audits, maintaining eligibility for federal healthcare enrollments.
  • 📈 Improved Scalability & Performance: The infrastructure modernization reduced response times and enabled automatic scaling.
  • 🛡️ Strengthened Security & Governance: AWS Control Tower provided centralized security policies and guardrails for compliance.
  • 📝 Yearly Policy Review & Updates: Ensured ongoing compliance by aligning policies with the latest CMS/EDE standards.
  • 🚀 Lower Operational Overhead: Infrastructure automation reduced maintenance burden, freeing up engineering resources.

🚀 Need to Modernize for Compliance?

Whether you're scaling a healthtech platform or ensuring regulatory compliance, Stackpad helps you build a secure, compliant, and scalable future.

Let's Talk About Your Infrastructure