securiting personal health information

I N D U S T R Y B R I E F Securing Personal Health Information Health care providers need accurate, up-to- date patient records to provide patients with Through on-going market research and with the involvement of the top thought leaders in the best possible treatment. Yet details about an individual’s health history, past healthcare, the committee helps identify innovative products and services that will Security Products and Services Help Health Care Providers illnesses or hospitalizations could prove embarrassing or harmful if they were help enhance productivity in the telecom/ information services departments of the • Reach the security goals dictated by their organization’s business needs and risk profile awareness improperly disclosed. nation’s hospitals and health systems. In addition, the American Hospital Association The information systems on which caregivers rely should also be protected from viruses, exclusively endorses voice and data networking products to its hospital membership. • Assure patient information can be accessed only by those with a need and right to know worms, distributed denial of service attacks and other malware that could disrupt access to patient data. These defenses must not, however, interfere with the national goal of Network Protection ’s range of security services solutions provides a defense-in-depth approach • Proactively identify security threats and mitigate them expanding access to health information through regional and eventually national designed to help detect data thieves, malicious hackers and network-borne threats. health information systems. Managed Firewall Services Managed Firewall Services include a network-based solution that allows HIPAA (the Health Insurance Portability and Accountability Act) requires that organizations Internet Protect® Internet Protect® and its family of customers to easily upgrade speeds and add sites as their needs grow, as well as handling patient information take reasonable steps to protect those records and to ensure services including My Internet Protect, DDoS Defense, and Private Intranet Protect require centralized application and enforcement of customer’s security policies. For providers they are accessible when needed. Failure to do so could result in dangerous errors in care no extra hardware or software on the customer’s network, notify administrators of possible attacks and provide recommendations who need to customize their firewalls with location-specific policies, offers a range and significantly harm the reputation of the health care organization, in addition to other or take action to mitigate those threats. of managed enterprise-class, high- performance premises-based firewall potential consequences. To meet these multiple challenges, health care providers need solutions from vendors Web Security Web Security services include Web Filtering, which helps block Web content as services. In addition, Endpoint Security manages and enforces compliance with security and patch management policies for remote users, applications and devices. who understand not only the latest trends in information security, but the unique designated by the customer; Web Virus Scanning, which helps eliminate Web-borne challenges facing the health care industry. threats before they infect networks; Web Spyware Screening, which helps block ’s Secure E-Mail Gateway ’s Secure E-Mail Gateway service Industry Expertise has longstanding ties with the health care industry, which include the formation of spyware attacks and identifies malware infections; and IM Control which helps provides virus scanning to keep unwanted viruses, worms and other malware off a Healthcare Executive Advisory Committee. enable companies to control employee’s use of Instant Messaging. customer networks. Content Filtering helps prevent various content from entering or leaving networks while spam filtering uses Top Security Concerns of Health Care IT Executives Consulting services help healthcare providers identify gaps in their security Top concerns – security of computerized medical information. (2007 vs. 2006 results) coverage and to implement and maintain proper safeguards. They include Business 100 2007 2006 Impact Analysis (BIA), Baseline Assessment, Gap Analysis, Business Continuity Planning, 1. Internal breach of security 57% 51% Policy Development and Security Feature Offerings. Post analysis services include 80 2. HIPAA compliance 30% 18% 60 3. Limits of existing technology 26% 24% consulting, network design and installation, security services and managed services. 4. Connecting IT at hospital 25% 15% 40 and remote facilities 5. External breach of security 23% 12% 20 6. Unauthorized use of data 19% 12% Security consulting services for smaller health care organizations are provided by 0 1 2 3 4 5 6 7 8 9 by third parties 7. Patients’ lack of confidence 13% 10% Spohn & Associates, and include security products and services. These 8. Inadequate systems in place 14% 10% 9. No concerns 4% 3% offerings include security assessments designed to meet specific needs such as: Source: 18th Annual HIMSS Leadership Survey, Healthcare Information and Management Systems Society (C) lowering risk of loss to the organization; identifying vulnerabilities and improving security; documenting compliance and identifying gaps; and meeting corporate protective and preventive countermeasures to filter spam. The Secure E-Mail Gateway Token Authentication For systems housing especially sensitive information, ’s Token Authentication requirements for confidentiality, integrity and availability of information, applications, also provides disaster recovery (message store and forward) and encrypts all e-mail systems, networks and facilities. relayed to and from the gateway. service performs end-to-end management of two-factor authentication using the RSA SecurID® token for enterprise networks, applications, and operating systems. At Work: Protecting Hospital Tenants The 66,000-square-foot Melchor Medical ’s MPLS IP VPNs ’s MPLS (Multiprotocol Label Switching) IP VPNs are state-of-the-art IP virtual private Office Building at El Camino Hospital houses a variety of specialty clinics and practices Mobile Security As health care organizations put more network models and offer a flexible and easy path to migrate from legacy data networks to which rely on the Internet for clinical, billing and research purposes. When the hospital information in the hands of mobile workers, they need new technologies with security a secure and scalable IP-based infrastructure. Because this is a network VPN, health care opened the office building, it turned to not only for data and Internet network features to help protect patient data even while traversing mobile networks and while providers don’t need to buy, install or manage extra equipment at their sites. resident in mobile devices. service, but for managed security services, such as intrusion prevention, enhanced Intrusion Detection/Prevention also provides both network- and host- based Intrusion Detection/Prevention services NetMotion Wireless’ Mobility XE extends the protection of VPN (virtual private networks) firewall administration and network management. By using 's security and management services, the hospital can which encrypt patient information from the wired to mobile IP-based networks. Mobility provide its tenants greater assurance against security risks, such as viruses and Day Zero which monitor the customer’s networking infrastructure for potential misuse from XE centralizes control of all wireless applications and devices as well as of access to the attacks. “We are confident that the solution provided by will support electronic internal and external sources. These services are also designed to help detect endpoints corporate network. communications by delivering reliable access to patient records as well as the Internet.1” on the network that are propagating threats or violating security policy and revoke their Consulting Services IT health care organizations are most skilled in developing information systems geared to says Ken King, vice president of facilities at the hospital. access to the network. The Intrusion Prevention service is designed to also provide monitoring and notification of critical events such as suspicious packets, network sweeps, mail the specific needs of doctors, nurses and other practitioners, rather than being experts References in information security. reconnaissance, port scanning, flood attacks and IP spoofing.
In cities, towns and remote locations, mini satellite dishes point attentively to the Southern sky. Emblazoned with names like DirecTv, ExpressVu, DirecWay, Web Conferencing, iNetVu, Linkstar, XM Satellite Radio, Sirius Satellite Radio iDirect their numbers are growing at an amazing rate. Iridium Satellite Phone is the only provider of truly global satellite voice and data solutions with complete coverage of the earth (including oceans, airways and Polar Regions). Get the latest buzz on Free satellite tv systems - including the features and benefits that make them today's ultimate television viewing experience.(Get Dish) Ever wonder why these satellite dish systems are in such great demand? Does high speed internet service or digital television programming via satellite intrigue you?
If you've never heard of Cheap VoIP, get ready to change the way you think about long-distance phone calls. VoIP, or Voice over Internet Protocol, is a method for taking analog audio signals and turning them into digital data (IP packets) that can be transmitted over the Internet.