Securing Global Health Innovation with Zero Trust
In an increasingly hybrid and security-conscious world, Amsterdam-based health tech company myTomorrows needed more than a traditional VPN. The company, which helps patients with unmet medical needs discover and access clinical trials and expanded access programs, handles highly sensitive patient and pharmaceutical data. Ensuring that this information remains secure across a distributed, global workforce is mission critical. We spoke with Filippo Mandrini, Information Security Officer at myTomorrows, to understand their transition from VPN to Zero Trust, the selection process behind Zscaler, and how IT-Concern played a key role in ensuring a smooth implementation.
The Challenge: From VPN friction to global security needs
“Our old setup involved a traditional VPN, used exclusively by our engineers to access development and production environments,” explains Filippo. “Performance was poor, and it didn’t scale. We were looking for something that would support our growing organisation and protect our data infrastructure.” With a team spread across Europe, India, North and South America, myTomorrows needed a security model that aligned with the hybrid nature of its workforce. The goal: a solution that protects every employee everywhere, not just developers, while maintaining speed and usability.
Why Zscaler
The team conducted a detailed market analysis, comparing vendors. “One of the solutions relied heavily on community-based support and unpredictable pricing for hands-on help. That was a risk for us,” says Filippo. “Zscaler offered clearer pricing and stronger localized support, especially through IT-Concern.” Zscaler Private Access (ZPA) replaced their AWS VPN, while Zscaler Internet Access (ZIA) was deployed to protect internet traffic for the entire team. ” We ended up spending less than before and now provide superior security measures for all our staff.”
The role of IT-Concern: partnership beyond implementation
IT-Concern, a trusted Zscaler partner in the Netherlands, played a central role. “What really stood out to us was how involved IT-Concern was,” says Filippo. “Maarten and Patrick didn’t just configure things, they challenged our assumptions, guided us through best practices, and optimized the setup.”
Even after deployment, IT-Concern remained engaged: “We have standing communications with their team. If there’s a possible incident, they proactively flag it. Their triage emails help us save time and stay ahead of issues.” The collaboration also extends into regular vendor review meetings with Zscaler and IT-Concern. “Whether it’s licensing discussions or security tuning, nothing is left hanging.”
Compliance and, visibility, with cloud advantage
As a health tech organisation, myTomorrows must comply with stringent regulations such as GDPR, ISO 27001 HIPAA and SOC 2. “We handle patient records and sensitive pharma data. There is zero tolerance for risk,” explains Filippo. “With Zscaler, we increased the visibility we need into endpoints and connections, expanding what you get with a modern MDM.”
Visibility was limited over laptops.. Now, Zscaler enables checks on:
- Device encryption
- Firewall settings
- Password policies
- User account integrity
- Internet activity risk profiles
A strategic advantage: credibility, cost, and security
The switch to Zscaler wasn’t just about IT. It also supports business growth. “Being able to mention Zscaler in investor meetings adds credibility. People may not know the name, but a quick search shows that we take security seriously,” Filippo notes. The impact is also financial: “Zscaler secures 100% of our team. And it costs less than the limited VPN setup we had before. That’s significantly more coverage with better outcomes.”
Mission-Driven Security
Ultimately, Zscaler supports the greater mission of myTomorrows: enabling earlier and better to access to treatments “We’re working in a high-risk, high-trust environment. Trust is our currency,” Filippo says. “Security isn’t an IT checkbox, it’s central to how we serve patients, physicians and pharma partners.”
Zscaler, in tandem with IT-Concern, provides a scalable, secure, and compliant foundation to build on. “Zero Trust isn’t hype. For us, it’s the most practical way to ensure security at scale and peace of mind.”
Modules in use
- Zscaler Private Access (ZPA): replaces AWS VPN for secure developer access to production environments
- Zscaler Internet Access (ZIA): protects all users from malware, phishing, and unsafe browsing
Want to learn more about how Zscaler helps health tech organisations scale securely? Contact IT-Concern for insights, implementation support, and long-term partnership.
Also looking for a mature partnership that is ready for the future?
The challenges mentioned above may be familiar to you. An IT Partner can support and relieve your concerns!
Contact us to discuss this together:
Sales: +31 (0)183 511 456
Support: +31 (0)183 511 357
Our consultants are also available for a second opinion on your current solution.
