增强医疗保健安全性和合规性:独立护理系统案例研究
技术
- 网络安全和隐私 - 安全合规
- 网络与连接 - 网关
适用行业
- 玻璃
- 国家安全与国防
适用功能
- 质量保证
用例
- 租赁金融自动化
- 篡改检测
服务
- 系统集成
关于客户
独立护理系统 (ICS) 是一个非营利组织,运营医疗补助管理的长期医疗保健计划。 ICS 成立于 2000 年,为纽约市地区 6,000 多名患有身体残疾和慢性病的成年人提供服务。该组织致力于为其他长期护理机构未满足其需求的会员提供服务。 ICS 与当地医疗保健提供者密切合作,为患有严重残疾或行动不便的社区成员提供服务。该组织已将合规性作为首要业务优先事项,以保护会员隐私和自身声誉。
挑战
独立护理系统 (ICS) 是一项由医疗补助管理的非营利性长期医疗保健计划,为纽约市地区的居民提供服务,该计划面临着多项挑战。该组织需要提高安全性以满足严格的 HIPAA 合规性要求,最大限度地提高业务连续性以保持核心医疗保健应用程序的正常运行,并简化网络管理以帮助员工保持工作效率。 ICS 正在寻求一种完整的安全解决方案,以简化法规遵从性并保护组织免受可能影响网络性能的安全威胁。该解决方案必须易于扩展和修改,以满足不断变化的需求,并提供集中管理,以简化和精简公司 IT 员工的网络管理。
解决方案
ICS 决定用 Check Point 4600 和 2200 下一代安全设备替换其老化的防火墙。 ICS 添加了全套 Check Point 软件刀片,以保护组织免受可疑网络威胁、病毒、机器人程序和其他安全问题的侵害。每个设备还包括 Check Point 合规性软件刀片,这是一个有助于确保合规性最佳实践的专用解决方案。 Check Point 合规性软件刀片监控管理、软件刀片和安全网关,以不断验证 ICS Check Point 环境是否以最佳方式配置。该刀片提供 24/7 安全监控、策略违规安全警报以及开箱即用的审计报告。为了进一步增强其主动威胁防护,ICS 还在其解决方案中添加了 Check Point SmartEvent 软件刀片。 SmartEvent 将公司网络上的事件关联起来,以提高可见性并加快补救速度。
运营影响
数量效益
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
.png)
Case Study
Discrete Manufacturing Industries (Fiberglass Pipe)
The implementation of ERP software in a Discrete Manufacturing organization needs to be strategic, irrespective of its size and capacity. The client had already implemented an ERP system which fulfilled their requirements but was not efficient enough. Efficiency here meant Synchronized Planning, Updating and Multisite Planning. Planning at client’s place was done outside the ERP system. Lack of proper synchronization to the ERP system paved way to huge delays in the changes getting updated in the system. These delays caused disruption in achieving delivery schedules. Multisite Planning is a solution to an organization which has multiple production units (may or may not be geographically separated) and thus needs planning across these units to synchronize production activities within them. The client also has multiple factories and hence Production Planning control is very essential in their case. Since Multisite planning was not possible with Baan ERP system, this was another bottleneck for the client.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Case Study
Securing a Large Data Center in the EMEA Region: An IoT Case Study
A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.
Case Study
Leveraging Graph Technology for Enhanced Cybersecurity: A Case Study on MITRE's CyGraph
MITRE, a federally-funded, not-for-profit company that manages seven national research and development laboratories in the United States, was grappling with the challenge of managing an influx of cybersecurity data. The constant changes in network environments were impacting the security posture of U.S. government agencies. Intrusion alerts, anti-virus warnings, and seemingly benign events like logins, service connections, and file share access were all potentially associated with adversary activity. The cybersecurity researchers at MITRE needed to go beyond rudimentary assessments of security posture and attack response. This required merging isolated data into higher-level knowledge of network-wide attack vulnerabilities and mission readiness. The challenge was not the lack of information, but the ability to assemble disparate pieces of information into an overall analytic picture for situational awareness, optimal courses of action, and maintaining mission readiness. The team also struggled with fully comprehending a given security environment and mapping all known vulnerabilities.
