jelikalite cognilum
HIPAA-compliant near-infrared light therapy platform with BLE medical device integration, backed by Mount Sinai.
the brief
JelikaLite's Cognilum delivers transcranial near-infrared (NIR) light therapy for autism spectrum disorders through a Bluetooth-enabled headset, prescribed and monitored remotely by clinicians. The platform had to satisfy three constraints that almost never coexist: a clinical-grade BLE control path safe enough for medical use, full HIPAA compliance for PHI handling, and a consumer-grade Flutter UX simple enough for parents to operate at home with no training.
the work
v1 — sole engineering ownership. Architected and built the entire product solo: Flutter mobile app for iOS and Android, clinician web dashboard, BLE communication protocol with the medical device, and HIPAA-compliant backend infrastructure on AWS.
BLE therapy control path. Custom protocol for session start/stop, real-time telemetry, dose tracking, and emergency abort. Hardened against pairing attacks, replay attacks, and adversarial firmware impersonation.
HIPAA-compliant AWS architecture. Multi-account landing zone via AWS Control Tower and Landing Zone Accelerator. Hub-and-spoke VPC topology with centralized inspection, AWS Network Firewall, GuardDuty, Security Hub, and CloudTrail. PHI never touched a public subnet.
Threat model documentation. A 40+ threat catalog with CVSS v3.1 scoring, BLE security specification, AWS control mappings, detection matrix, and a phased remediation roadmap — used during compliance audits.
v2 — engineering team leadership. Hired, onboarded, and led the development team for the platform's next chapter. Established sprint cadence, code review standards, and documentation practices.
the result
The platform shipped to production with Mount Sinai's backing, supporting clinical pilots and at-home therapy delivery. The HIPAA-compliant infrastructure passed security review without modification — built right the first time.
have a project like this?
Free 30-minute scoping call with a senior engineer — not a sales rep.
▶ Start a Conversation ▷ See All Case Studies