Request a Call

Processing...

  • Hidden

Business Overview

Our client specializes in developing, manufacturing, and distributing healthcare systems, both devices and software, for people with diabetes. Due to the sensitive nature of patient data and the stringent cybersecurity requirements imposed by regulatory bodies, the company prioritizes data protection and maintains rigorous security protocols like HIPAA, FDA, GDPR, etc.

To safeguard information transfer, each product release undergoes multiple cybersecurity checks, from bend testing to code review. Security architects analyze the results—including the vulnerabilities found—collect them into a report for regulatory authorities, and work on risk mitigation strategies.

Since these tasks were manual and inefficient—leading to unnecessary costs and resource allocation—the company decided to streamline and automate the entire process for greater cost-effectiveness and productivity. They asked the NIX team to develop a specialized AI-powered portal capable of generating reports and making smart predictions, ultimately streamlining document flow and assessing product release risks. The client chose us for our proven cybersecurity background and vast experience in healthcare development.  

Picture 1 600x405

Project Scope

challenge icon

Develop an LLM-based system to autonomously generate cybersecurity reports for medical devices using an internal documentation database and generative AI technologies.

challenge icon

Ensure this system intelligently analyzes identified threats and vulnerabilities and proposes comprehensive mitigation strategies.

Solution

Our team developed an LLM-based system with a function-driven architecture that automates repetitive documentation tasks and streamlines cybersecurity administrative workflows. Deployed in the Google Cloud Platform (GCP), it utilizes various GCP services, such as Cloud Run and Google Workflows, and fully leverages generative AI capabilities. All data within this solution is encrypted both at rest and in transit, ensuring robust security.

To unite and set up all interconnected operations, we integrated the platform with the necessary enterprise-level systems, including threat modeling tools and the Oracle database as the final storage for reports. This two-way data synchronization ensures the correct extraction and processing of information for generating reports.

 

Picture 2 600x405

AI-powered Data Extraction

To optimize information aggregation from the cybersecurity reporting repository, our team used a combination of advanced technologies, including prompt engineering techniques, the retrieval-augmented generation (RAG) approach, and Vertex AI model capabilities. This enabled precise data extraction, efficient analysis, and accurate report generation.

  • Prompt Engineering: Domain-specific prompts allowed the AI to understand complex cybersecurity language and regulatory needs, ensuring well-structured reports and actionable mitigation strategies with minimal corrections.

  • RAG Approach: By combining Google Search grounding with Vertex AI Search, the system accessed both external and internal data sources, delivering reliable, verifiable, and contextually relevant outputs.

  • Vertex AI Models: These models facilitated rapid data processing, accurate information retrieval, and smooth integration with the company’s systems, ensuring synchronized and reliable workflows.

System’s Functionality

System’s Functionality

  • Intellectual Report Generation. The system collects information from various sources and converts it into government-level reports for regulatory organizations. It uses Google’s AI engine to check the reports and fill in missing fields, freeing security architects from performing these tasks manually.
  • AI-powered Predictions. By leveraging Vertex AI Agent Builder, we designed and deployed conversational agents capable of generating contextually relevant mitigation recommendations directly within the report generation process.
  • Smart Search. We also used Vertex AI’s Agent Builder to create a smart search in the company’s documentation, which allows security architects to look for relevant information for report generation and analysis.
  • Accuracy Reports. NIX equipped the system with special reports to help the company’s management and security engineers understand how accurate the AI ​​is in its forecasts, further improving its operation.

 

Picture 3 600x405

AI Model Optimization

To increase the accuracy of the system’s predictions and the quality of the generated reports, we are constantly improving our AI model. Feeding it curated data from Oracle’s database and internal storages and using automated iterative prompt optimization, we instruct the AI to generate predictions on known data and compare results with expected outcomes. This process can be repeated any number of times to further enhance the accuracy of AI outputs.

Outcome

With this LLM-based system enriched with generative AI technologies, the client significantly enhanced the company’s workflows and achieved all of their goals:

  • Reducing the labor for the cybersecurity architect team through process automation and AI suggestions that simplify the work with government-level cybersecurity reports
  • Analyzing potential risk attack vectors for product releases and post-market activities
  • Providing AI-powered and well-trained security mitigation strategies for new and existing threats and vulnerabilities
Picture 4 600x405

This gave cybersecurity professionals more time to dedicate their expertise to strategic and critical endeavors, boosting the company’s performance and improving its products.

We continue to work on the project to make the system even more sophisticated and its predictions even more accurate.

Success Metrics

1,000+

AI-powered Reports

70%

Less Time Spent per Report

90%

Accuracy of Mitigation Strategies

Team:

Team:

Project Manager Business Analyst Tech Lead 2 DevOps Engineers
Tech stack:

Tech stack:

Google Cloud Vertex AI Agent Builder LangChain

REQUEST A CONSULTATION

Contact us

Relevant Case Studies

View all success stories

Device Management Solution for Fortune 500 Company

Internet Services and Computer Software

Manufacturing

Success Story Device Management Solution for Fortune 500 Company image

AI Assistant for Enterprise-grade Device Management

Internet Services and Computer Software

Manufacturing

Success Story AI Assistant for Enterprise-grade Device Management image

Modernization of the Online Food Delivery Ecosystem

Food & Beverages

Logistics & Delivery & Supply Chain

Success Story Modernization of the Online Food Delivery Ecosystem  image

FITHOOD: Mobile App for a Seamless Fitness Experience

Wellness & Sport

Success Story FITHOOD: Mobile App for a Seamless Fitness Experience image
01

Contact Us

Accessibility Adjustments
Adjust Background Colors
Adjust Text Colors