Information about http://www.sensage.com/English/Collaterals/Case_Studies/SenSage_CaseStudy_Noridian.pdf
…
Tags: administrative agreements, assurance act, business driver, contractor assessment, coverage group, dread disease, external contractors, fisma, group life insurance, health care coverage, information security management, internal staff, medicare services, patient health, privacy violation, profile management, risk management solution, security risk management, security violations, suspicious activities,Pages: 2
Language: english
Created: Tue Apr 26 15:52:01 2005
Display cached document
Page 1
Page 2
Noridian
A Case Study
Noridian deployed SenSage's security risk management solution to ensure adherence to the mandates of the Healthcare
Information Portability and Assurance Act (HIPAA) and to optimize its security operations. To meet the stricter Contractor
Assessment Security Tool (CAST) requirements issued by the Centers for Medical and Medicare Services (CMS), as well
as the Federal Information Security Management Act (FISMA), Noridian monitored and analyzed the required log data in
its entirety. Both internal staff and external contractors of the company effectively respond to alerts on potential security
violations and suspicious activities involving patient health data and proactively mitigate security risks.
"SenSage's centralized Company Profile
management platform Noridian offers vision and dental coverage, group life insurance, cancer and dread disease coverage,
annuities, flexible benefits administration, worksite benefits and an out-of-hospital prepaid prescription drug
enabled us to program to employers. More than 440,000 people have Noridian health care coverage either directly or
streamline the process through administrative agreements. To continue its growth and meet member needs, Noridian focuses on
the development and implementation of effective managed care programs.
of handling potential
privacy violation Business Driver HIPAA Audit Controls, FISMA and CAST requirements by CMS
investigations. I Noridian is subject to the stringent audit control regulations of HIPAA. Under HIPAA, organizations such as
envision SenSage Noridian must not only take specific precautions to ensure the privacy of patient data, but also must act
quickly to investigate and remedy any security breaches involving such data. Furthermore, Noridian's
solution's high degree growth in managed care services has partly contributed to the surges in its use of Medicare contractors. As
of flexibility, and its a result, it is mandatory to also closely examine and comply with FISMA and CAST. These requirements
ability to customize by CMS necessitate a solution that can handle data from broader sources for an extended period.
continues to allow us Results
to add any log sources Noridian utilizes SenSage's log adapters for managing enterprise log data from network, security, systems,
without concerns on Web applications and healthcare applications containing EPHI (Electronic Protected Health Information.)
performance, capacity Noridian has gained higher visibility and control of the business activities by its Medicare contractors and
other partners by monitoring, analyzing and reporting on the activities related to healthcare information as
or scalability." well as on broad security and network data. The company not only met its initial compliance objectives but
also gained better understanding of its network and security operations, which led to increased business
efficiency in its managed care operations and internal auditing processes.
- Troy Aswege,
AVP Information Services, The Bottom Line
Noridian Noridian demonstrated HIPAA, FISMA and CMS - CAST compliance with centralized management and
monitoring of logs over diverse devices and applications while improving security and network operations.
SenSage Solution Summary:
Industry: Healthcare Log Types: Report Types:
Business Drivers:
Networking: Nortel Investigate users
· Centralize logging and
event correlation in Network devices: Checkpoint FW, SonicWALL FW Activity on EPHI hosts
compliance with audit Security: Snort IDS Firewalls protecting EPHI
control requirements
Operating Systems & Windows Event log (via Snare), IDS activity for EPHI hosts
· Minimize time and
personnel cost required Management: Unix AIX system logs, Red Hat E-mail activity summary
for investigations Linux, RACF, Tivoli, NetVision, Logins to EPHI hosts
· Comply with CAST Novell Zenworks
Suspicious Extranet
requirements by CMS Web/DB Applications: Windows IIS, Radius Access logs,
Novell logs, Oracle, Squid proxy Access to EPHI
Daily log volume:
· 2.5 gigabytes a day
SenSage, Inc., Copyright 2005
SenSage for HIPAA
SenSage provides a comprehensive toolset to meet the audit control requirements of HIPAA. With custom adapters for collecting enterprise
1. Pinpoint searchlog data from critical healthcare business systems such as Cerner, Lawson, and McKesson, SenSage enables rapid collection of com-
based
on pattern recognition log data from varied sources. The company's patent-pending correlation and storage capabilities facilitate the identification
plete
(ad-hoc query) of otherwise hard to identify security breaches that occur over time. Built-in correlation and pre-defined reports provide
intelligent business analytics that enable users to quickly identify, research, and respond to security violations
Report Categories
What's Included in the toolset?
Hosts with Suspicious Network Activity
Over 50 log adapters and more than 120 pre- Internal Users with Suspicious Activity
defined reports specific to HIPAA best practices Suspected Data Leakage
and audit control regulations. Investigate Email Usage
Investigate Hosts
Investigate Users
Authentication and Access Control
Business Critical System Activity
Email Activity
Firewall Activity
IDS Activity
Patient Management Activity
Web Surfing Activity
Types of Log Adapters
Network
SenSage Product Facts Firewalls/VPN
Routers/Switches
Adheres to COBIT Standards Traffic Management
Traffic Analysis
Runs on commodity hardware Remote Access
Scales linearly for low-cost expansion Operating Systems
Midrange/Desktops
Retains complete log data, no filtering or Mainframe
indexing 3rd Party OS Audit Products
Provides massive, online availability of Security
data with patent-pending compression IDS/IPS
technology Antivirus
SIM/SEM/ESM
Utilizes parallel processing technology on Vulnerability Management
data collection and query for high SenSage Self-Audit
performance and redundancy Infrastructure Applications
Access Control /Identify Management
Database
Web Proxy
Email & IM
Web/App Server/Middleware
File Server
SenSage, Inc. Other Infrastructure Applications
55 Hawthorne Street, Suite 700 Horizontal Applications
San Francisco, CA 94105 ERP / Financials/HR
415.808.5900 Patient Management
www.sensage.com
SenSage, Inc., Copyright 2005 © 2005 SenSage, Inc. All Rights Reserved. Confidential - registered trademark of SenSage, Inc.
- SenSage is a 3
All other brand names are trademarks of their respective holders.