• Solutions

• Solutions Overview
  • About Our Solutions
  • Determine Exposure to Real-World Threats
  • Perform Continual, Automated Testing
  • Assess Security Across IT Layers
  • Validate Security Controls
  • Connect Security Data to Business Risk

• Solutions by Industry
• Government
• Health Care
• Respond to the HITECH ACT
• Validate HIPAA Compliance
• Limit Unauthorized Insider Activities
• Maximize limited security staffing
• Drive down Web-based Security Risks
• Insulate Your Networks from Unauthorized Devices
• Diminish the Impact of Social Engineering
• Validate security investments
• Higher Education
  • Overview
  • Assess exposure to potential data breaches
  • Insulate networks from unmanaged devices
  • Limit unauthorized insider activities
  • Drive down web-based security risks
  • Maximize limited security staffing
  • Diminish the impact of social engineering
  • Validate security investments
  • Meet compliance demands

• Solutions for Compliance
  • Validate Security Controls
  • FISMA / NIST
    • NIST 800-137
    • NIST 800-39
    • NIST 800-53
  • GLBA
  • HIPAA
  • PCI
  • SOX
  • CAG

SHARE

Addressing Pervasive Health Care IT Security Challenges Via Proactive Assessment

Organizations in the health care sector find themselves at a challenging crossroads related to the security of their IT infrastructure and electronic data as budgetary and staffing resources continue to come under greater pressure while security requirements – both internal and external – continue to advance rapidly both in their volume and complexity.

Using Core Security Technologies’ security testing solutions and professional services to safely replicate real-world hacking and malware threats empowers organizations to isolate and prioritize their most critical vulnerabilities to more effectively address risks, ensure that mandated controls are functioning properly, and prepare for compliance audits.

Learn how conducting penetration testing at health care institutions can help you to:

• Respond to the HITECH ACT
• Validate HIPAA compliance
• Limit unauthorized insider activities
• Maximize limited security staffing
• Drive down Web-based security risks
• Insulate your networks from unauthorized devices
• Diminish the impact of social engineering
• Validate security investments

Please review the below resources for more information about our relevance to health care environments:

• Documents
• Webcasts
• Compliance Information

Documents

• CORE IMPACT Pro Overview Data Sheet
• CORE IMPACT Pro Business Case/Cost Justification
• Care New England Case Study
• Visiting Nurse Service of New York Case Study

Webcasts

Penetration Testing: Performing an IT Security MRI
Join Larry Whiteside, Jr., CISO for the Visiting Nurse Service of New York share his methods for creating proactive IT security and vulnerability management best practices to help maximize internal resources and minimize risk.

Comprehensive Penetration Testing with CORE IMPACT Pro
View a recorded demonstration of network, endpoint, web application and wireless penetration testing with CORE IMPACT Pro.

Compliance Information

HIPAA: Complying with HIPAA policies
The Security Rule of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) mandates that health care institutions implement appropriate information security policies and procedures to protect ePHI (electronic Protected Health Information) from "reasonably anticipated threats and hazards". Penetration testing with CORE IMPACT helps to ensure the integrity and confidentiality of patient information, while enabling you to abide by HIPAA security standards.

HITECH ACT: Addressing the HITECH Act