Security Risk Analysis
A healthcare security risk analysis is the essential first step in identifying and implementing safeguards. This identifies potential risks and vulnerabilities in your environment that could negatively impact the confidentiality, integrity, and availability of electronic protected health information (e-PHI) held by your organization. While this requirement is not new, healthcare organizations are now facing steeper fines from the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) if it is not met.
Our security experts will conduct a risk analysis that involves interviewing critical members of the organization along with a thorough review of all policies and procedures. These data points help us to identify compliance gaps or issues and provide recommendations that will benefit the organization’s HIPAA-HITECH compliance objectives.
Your best line of defense is to see if you can penetrate your system. If you can, they can. Penetration tests are conducted using the same advanced tactics, techniques, and procedures (TTPs) employed by today’s modern hackers. Our certified, ethical hackers will assume the role of a sophisticated and motivated attacker in an attempt to manually penetrate your defenses — gaining access to your company’s most valuable assets.
Social Engineering Engagements
Social engineering attacks (specifically email phishing) have become the most common way malicious actors gain unauthorized access to an otherwise secure network. HCTec offers a wide range of highly customizable social engineering engagements that will allow you to test your organization’s susceptibility to today’s modern tactics.
Why it is important to have social engineering engagements:
- 35% of phishing messages are opened up by targeted users.
- 97% of targeted users fail to report malicious emails to management.
- 95% of all attacks on enterprise networks are the result of spear phishing.
The expertise we bring you:
- Systems monitored onsite or remotely
- 24/7 x 365 support
We talked with Keith Perry, CIO at St. Jude Children’s Research Hospital about how to tackle the ongoing challenge of data security. Watch his interview here.