Markets We Serve
Markets
Financial
Healthcare
Education
Energy
Retail
Technology
 

NetSPI Healthcare Practice

Service quality is the number-one priority in healthcare. While delivering care, providers must also protect the integrity of patient records, ensure the constant availability of life-saving technologies, and maintain systems that support critical functions in their facilities. Any disruption in healthcare information systems can have severe consequences. NetSPI helps healthcare providers meet strict HIPAA and FDA regulatory requirements, manage the additional demands of PCI compliance, and reduce information security risks.

NetSPI Services to Healthcare

HITRUST CSF Services

The HITRUST Alliance has brought a number of existing standards into the ISO-based Common Security Framework, or CSF. NetSPI offers:

  • Practical, step-by-step assistance in taking full advantage of the CSF.
  • Use of the CSF for a HIPAA Gap Analysis.

PCI Consulting and Audit
  • Assessing PCI compliance status through discovery and pre- or post-audit consulting.
  • Performing PCI DSS audits.
  • External (ASV) and internal vulnerability scanning, penetration testing, code review and firewall rule-set review.

Application Security Assessment/Secure Portal Review
  • Minimizing risk within applications through multi-layer testing: vulnerability, penetration, and code-level review.
  • Performing database and data warehouse security assessments.
  • Evaluating risk related to client-side residual data.

Third-Party Risk Analysis
  • Assessing protection of confidential data in relationships with third party service providers, partners, and data programs.
  • Reducing enterprise risk by evaluating third-party clinical systems and technology for security issues and compliance gaps.
  • Pre- and post- third-party system implementation testing.

Risk-Based Enterprise Security Assessment
  • Assessing organizational risk through program, compliance and technical review.
  • Evaluating program effectiveness, identifying gaps, and developing plans to decrease organizational risk related to IT.
  • Incorporating infrastructure review and testing such as network architecture, wireless, firewall, IDS review and multi-layer penetration testing.
 
 
Case Study

NetSPI focuses on security to help HealthEast, a major healthcare provider, reduce risks to patients and community.

Request a copy
 
 
© 2010 NetSPI Inc. All rights reserved.