“We’ve moved everything to the cloud—do we still need a firewall?”
This is a common question we hear from medical practices that have embraced modern cloud-based systems like Genie Cloud, Office 365, or Google Workspace. The short answer? Yes. Absolutely.
Let’s unpack why.
A Typical Clinic Network Setup (Even with Cloud Apps)
Even cloud-first clinics have physical and digital infrastructure that needs protection. A basic setup includes:
- Workstations & Laptops: Used by reception, nurses, and doctors for daily operations
- Printers & Scanners: Often connected to the local network
- Wi-Fi Access Points: For staff mobility and BYOD (Bring Your Own Device)
- Routers & Switches: Handling internal data flow and internet access
- Firewall or Security Gateway: Often overlooked, but critical
- Internet Connection: Shared across clinical and administrative operations
- Guest Wi-Fi: Provided for patient convenience
Why a Firewall Still Matters
Cloud apps reduce your reliance on on-site servers—but not on cybersecurity. Here’s why a firewall remains essential:
1. Protection Against External Threats
Cloud or not, your devices are still connected to the internet. Firewalls:
- Block malicious inbound traffic
- Prevent unauthorised scanning and probing of your network
- Offer geo-blocking, intrusion prevention, and reputation-based filtering
2. Network Segmentation & Guest Wi-Fi Isolation
Modern firewalls allow network segmentation, which separates systems into secure zones:
- Keep admin PCs away from clinical devices
- Isolate diagnostic equipment from general staff workstations
- Most importantly, ensure guest Wi-Fi is fully isolated from internal systems so visitors can’t access or even see sensitive devices
3. Compliance with Privacy Laws
Australian healthcare providers must comply with:
- The Privacy Act and Australian Privacy Principles (APPs)
- The Notifiable Data Breaches (NDB) scheme
Lack of proper segmentation or network controls may be viewed as failing to take reasonable steps to secure sensitive health information.
4. DNS Filtering & Content Control
You still need to:
- Prevent staff from accessing malicious websites
- Stop malware before it reaches your devices
- Block phishing sites—even those outside of email
5. Logging & Monitoring
Cloud vendors protect their side of the infrastructure—but not yours.
- Firewalls can log access attempts, bandwidth usage, and suspicious behaviour
- Crucial for audits, incident response, and forensic investigations
But Everything is Encrypted, Right?
Yes, most cloud traffic is encrypted—but:
- Firewalls with DNS filtering and threat detection can still block dangerous connections
- Encryption alone doesn’t stop phishing, credential theft, or malware from entering through endpoints
Real-World Risk: The Guest Wi-Fi Problem
A well-meaning clinic offers guest Wi-Fi for patients. A visitor connects with a compromised phone that scans the local network.
If guest Wi-Fi isn’t isolated, that phone could interact with printers, workstations—or even clinical laptops.
Now imagine ransomware spreading across shared folders, bringing the clinic to a halt.
Final Word
Cloud computing reduces your infrastructure—but it doesn’t eliminate the need for a secure network. Think of it like switching to online banking: just because your money is digital doesn’t mean you stop locking your front door.
Ready to Secure Your Cloud-Based Clinic?
We help clinics set up the right-sized firewall, implement network segmentation, and fully isolate guest Wi-Fi—ensuring performance, compliance, and peace of mind.