Best Practices for Healthcare Data Breach Prevention

“The best breach prevention is a comprehensive layered defense strategy that spans endpoints and networks; if one of the layers fails there are other layers in place to ensure you remain protected.” Ensure this solution can generate reports on hardware, software or user attribute changes, and alert IT to any suspicious activity such as the removal of encryption or the downloading of unauthorized software. Implement a schedule of regular audits of hardware and software on portable devices, and of server security logs. Finally, ensure employees are prompted to change their passwords on a regular basis, and that passwords are sufficiently complex. Assess the physical security of your data center and server rooms and rotate access keys or codes regularly. L E V ER A GE A L AY ER ED SEC UR I T Y S T R AT EGY The best breach prevention is a comprehensive layered defense strategy that spans endpoints and networks; if one of the layers fails there are other layers in place to ensure you remain protected. Persistence® technology by Absolute is a critical part of this layered security model. The technology is embedded in the core of laptops and other devices at the factory. Once activated, it provides you with a reliable two-way connection so you can confidently manage mobility, investigate potential threats, and take action if a security incident occurs. The ability to communicate with your endpoints – regardless of user or location – means you can receive timely device and event information. Most importantly, you can apply remote security measures to protect each device and the data it contains. No other technology can do this. C O N CL U SI O N Keeping protected health information secure is one of the biggest challenges health practices face. Medical data is worth a fortune on the underground market, and a data breach can cost an organization millions in lawsuits, regulatory penalties, remediation and brand damage. The key to thriving in such a complex regulatory landscape is to prevent breaches from happening in the first place. Educating employees about regulations and cyber security is a first line of defense, but it’s also crucial to perform risk assessments and self-audits on a regular basis. Deploying a layered security strategy that provides protection for all endpoints and networks further protects the business by ensuring that if one layer fails, there are several more in place to back it up. Absolute is a critical part of an effective layered security model, providing lifecycle security, risk assessment and risk response to help organizations prevent costly data breaches. “Introducing stability in this new landscape requires employee education, ongoing risk assessments, self-audits and reliable preventative measures.” ABOUT ABSOLUTE Absolute® provides persistent endpoint security and data risk management solutions for computers, tablets, and smartphones. Our customers depend on us to provide them with a unique and trusted layer of security so they can manage mobility while remaining firmly in control. By providing them with a reliable two-way connection with all of their devices, our customers can secure endpoints, assess risk, and respond appropriately to security incidents. FOOTNOTES 1 Stolen And Lost Devices Are Putting Personal Healthcare Information At Risk, Forrester, September 2014 2 2014 Cost of Data Breach Study: Global Analysis, Ponemon Institute, May 2014 3 Ibid 4 P@$$1234: the end of strong password-only security, Deloitte, 2013 5 12 Tips to Prevent a Healthcare Data Breach, ComputerWorld, September 2012 © 2015 Absolute Software Corporation. All rights reserved. Absolute and Persistence are registered trademarks of Absolute Software Corporation. All other trademarks are property of their respective owners. ABT-NA-CS-TT-Best-Practices-E-071315 Whitepaper | 3
Please complete the form to gain access to this content