CASE STUDY Regional Medical Facility
The medical facility is one of the largest private hospitals in the country offering a full range of advanced medical services, including oncology, surgery, and rehabilitation services. It employs nearly 1000 medical and other employees.
Despite its size, the facility’s IT team is made up of only three members. Its network uses a variety of existing network security solutions, including endpoint security, enterprise firewalls (though some of these were outdated), and includes a well-segmented network structure, including a public wi-fi for patients, internal administrative segment, a segment for VOIP and emergency dispatch, internal medical data segment, and others.
While well designed, the facility network still faced several challenges. The IT team still missed out on network visibility as to the devices in the network at any given time, and had experienced several rare, but troubling security incidents. Though these had not resulted in data loss, they were alarming. The network faced chronic performance issues. The IT team lacked sufficient time and resources to handle the detected security incidents, and performance issues.
The facility was looking for a security monitoring solution – specifically to perform security functions across the network, provide visibility and performance monitoring, and secure confidential patient data.
As part of their search, HiLASE examined several other solutions in the market, but determined quickly that MENDEL was the best fit for their detection, visibility, and ease of use needs, and at a price that matched their budget.
The firm is using the MENDEL All-in-One hardware appliance.
– MENDEL identified several security incidents both on the public Wi-Fi network and some on the internal network, which would have taken significant time to discover within MENDEL.
– The root of the performance issues was discovered and resolved
– A number of misconfigurations (which presented a security risk) were identified
– MENDEL served as an additional stop-gap measure by integrating with the facility’s firewalls until a new firewall could be purchased.