National Health Provider Improves Security Posture Post Acquisition

Overview


 

A national healthcare benefits provider acquired a group of patient clinics across multiple markets and a smaller group in the pacific northwest.


 

In order to maintain a consistent level of security, the parent company’s policies and standards needed to be adopted by the newly acquired business units, which were of significantly different levels of maturity by market.


 

How Optiv Helped


 

Optiv conducted an information security controls assessment against the newly acquired clinics and mapped all findings to HIPAA, HICP and NIST CSF to complement the adopted parent company’s organizational standards and support their current risk management integration efforts.


 

We then provided separate reports, executive presentations and remediation roadmap recommendations by both individual markets and business units to address priority findings in a timely manner.
Image
DGPP-FinScvs-Regional-Bank-Webpage-asset-download.png

Download a printable version of this case study

 

Industry Served: Healthcare


Challenges

  • An acquisition of smaller patient clinics posed a potential threat to the level of security that a larger national healthcare benefits provider had maintained

Solutions

  • Identified controls, polices, procedures and standards which were not in line with parent company’s requirements
  • Determined current level of compliance with the HIPAA Security Rule
  • Provided a roadmap to remediate gaps and vulnerabilities, ultimately bringing all organizations up to a common security baseline

Results

  • Significantly improved HIPAA Security posture across the organization
  • Obtained valuable insight and details to prioritize and further integrate newly acquired markets under corporate cybersecurity standards
  • Standardized central point of authority at the agency level across all facilities and business associates

How can we help you secure greatness?

 

Optiv can advise on, deploy and operate end-to-end cybersecurity programs aligned to your business goals. As the cyber advisory and solutions leader, we serve nearly 6,000 companies across every major industry. Our certified experts can help you gain the agility, security, scale and control you need to stay ahead of the competition.