Protecting 4 million patient records from breaches takes a multifaceted approach, says Bredai “Dai” Snyder of Care Coordination Institute, a South Carolina-based company that works with healthcare providers to improve their clinical outcomes.
“Our breach prevention efforts really revolve around three core functions,” Snyder says in an interview with Information Security Media Group. Those include an enterprise content management platform, an identity management application and a breach detection system.
The institute uses Box for application development and information exchange, “which is preventive and has a lot of back-end security and governance to keep things from going where they’re not supposed to,” she says.
To ensure “a very tight infrastructure,” the institute uses an identity management application, Microsoft Azure Active Directory. The identity management tool “prevents you from accidentally logging into an electronic medical record or other system you should’ve had access to in the first place,” she explains.
For breach detection, the institute uses monitoring tools from FairWarning. Those tools send off alerts for incidents involving potential unauthorized access, she explains.