Remember way back in April of 2005 when the HIPAA Security Rule went into effect? Well apparently some healthcare providers didn’t get the memo. Big blow to Health Net.
So, no reasonable security controls to meet the HIPAA requirements much less no encryption of mobile storage devices? Seriously people: what is it going to take to encrypt mobile drives!!??
I’m not a fan of BitLocker in the enterprise and not sure how big Health Net is but, heck, they could’ve at least considered it!
Golly…I think I get so fired up about this stuff because it affects us all so personally. Furthermore it’s, um, common knowledge that big security breaches will and do occur on a daily basis.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”