Resources for Health Insurance Portability and Accountability Act (HIPAA)

Perfect HIPAA Security impossible, experts say

searchsecurity.techtarget.com

Adam Le had his work cut out for him when he joined Alliance Imaging last October as director of IT infrastructure. Coming from the financial services industry, Le was accustomed to advanced IT systems. But Alliance, like some other health care companies, wasn't exactly on the cutting edge of technology -- or security, for that matter.

To complicate things, the Anaheim-Calif.-based provider of diagnostic medical imaging services is a highly distributed, very mobile company. Of its 2,500 employees, only 400 sit inside one of its six offices; the rest are mobile, working from more than 80 fixed-site imaging facilities that are hosted inside hospitals, or at 400 mobile imaging centers that travel across the U.S.

With HIPAA security requirements and other regulations to comply with, Le implemented initial access controls by creating Microsoft Active Directory security policies. Devices from ConSentry Networks, which provide centrally-managed NAC and identity-management capabilities, enhance and enforce Alliance Imaging's access controls. Shifting to a Citrix environment further increased security by reducing the amount of data on employees' PCs and RSA tokens strengthened authentication.

View the Resource

Share or bookmarklet this web page at: