Security Management Services

PHNS offers a number of services to assist clients with their security needs. PHNS’ methodology for securing business information and other assets involves a comprehensive approach that considers all components of the complex and unique networks that healthcare organizations must manage. The service processes are designed to allow rapid improvement in security posture while minimizing impact to business operation.

Services Offered:

  • Security policy review, development
  • Security standards and regulatory compliance (HIPAA)
  • Vulnerability assessment / penetration testing
  • Vulnerability remediation
  • Intrusion detection/prevention
  • Network security architecture (review, design, implementation, operation)
  • Email security and content filtering
  • Web content filtering
  • Encryption technology (review, design, implementation, operation)
  • Security information management (event log data collection, correlation, analysis, reporting)
  • Physical security controls
  • Host centric security technology (managed anti-virus, anti-spy/ad-ware, firewall, IDS/IPS, etc.)
  • Incident response
  • Computer forensics

Security Standards and Regulatory Compliance (HIPAA)

PHNS can provide audit and gap analysis to determine if customers’ policies, procedures, infrastructure and applications are compliant with standards. These may be internal standards/policies as well as external standards including federal regulations such as HIPAA and international standards such as ISO 17799.

Many covered entities have identified ongoing HIPAA compliance as a high priority. PHNS places the same priority on safeguarding PHI and other sensitive data. PHNS has acquired or developed tools and skills to evaluate administrative, physical and technical safeguards and can help customers exceed requirements for compliance while reducing project duration and cost. All PHNS employees are required to attend annual HIPAA compliance training. All PHNS services and applications are assessed frequently for compliance with HIPAA. Any identified risks are quickly resolved to maintain compliance.

Clients can confidently enter into Business Associate agreements with PHNS knowing that the appropriate safeguards are in place to maintain 100% HIPAA compliance.