Best Practices for Managing Firewall and Router Security

by Sarah Harvey / June 14, 2023

When you look at the threat landscape today and the organizations that have experienced a data breach (Target, Home Depot, Arby’s), they all have a common denominator – they were all compliant. They had been checking the boxes like they were asked to do. So, when it seems that compliance isn’t enough, how can we ensure that we are secure? Organizations today should use these examples as motivation to focus…

Conducting your HIPAA Risk Analysis

by Sarah Harvey / June 14, 2023

A couple of weeks ago, we posted about the planning process for a HIPAA risk analysis. This process included determining whether the proper resources are available, the importance of defining scope, creating or using ePHI workflows, and compiling asset lists. The next step in the process is to perform the actual risk analysis. Let’s talk about the actual elements for conducting your HIPAA risk analysis and define some common terms…

Conducting Your Risk Analysis

by Sarah Harvey / April 12, 2023

How to Conduct a HIPAA Risk Analysis In this webinar, Mark Hinely will teach the process of determining risks that are common for HIPAA risk considerations.  It’s important that your organization understands the terms related to risk analysis: Vulnerability: flaw or weakness in system security procedures, design, implementation, or internal controls that could be exercised (accidentally triggered or intentionally exploited) and result in a security breach or a violation…

Moving from SSAE 16 to SSAE 18

by Sarah Harvey / December 19, 2022

Why the Change from SSAE 16 to SSAE 18? Convergence with international standards is driving this change. There have been changes on the International Statement on Attestation Engagements (ISAE) side, and in the U.S, the Auditor Standards Board (ASB), desires to converge its standards with the international community’s changes. The corresponding standard to SSAE 18, which is a U.S. only standard, relates to the new ISAE 3000. In the full…

Firewall and Router Management

by Sarah Harvey / December 19, 2022

Best Practices for Firewall and Router Management This webinar is not going to provide you with specific instructions on how to configure your individual devices. However, it will provide you with the individual attributes that you need to consider when developing your router and firewall security program. In this webinar, we will focus on discussing physical devices, running operating systems, and secure traffic rules.  If your goal is to fully…