Wyoming Medical Center, Los Angeles County, and Raymond James: Endpoint Security Gets Complicated. Group 2: Marco Hidalgo Wesley Lao Michelle Marquez-Lim Nicole Marquez-Lim Liza Guades Rachelle Roque Golda Go. Overview.
The information security officer supports 18,000 computers and operates under the restriction of Health Insurance Portability and Accountability Act (HIPAA) regulations. They use disk encryption to protect patient information and confidentiality.
One concern of Endpoint Security
The chief security officer opted for Sopho’s Endpoint Protection and Data Security Suite, which offers firewall, antivirus, data loss prevention (DLP), antispyware, encryption, and network access control (NAC).
Mobile devices that could get sensitive information are disk encrypted. Guest users are allowed to use PCs with dedicated wireless network that leads to limited set of servers in a network.
The company wants tight control over web content available to users, to minimize malware coming in via web browsing.
At Raymond James:
-Used DLP solutions, Sophos Endpoint Protection and Data Security Suite, which offers firewall, antivirus, antispyware, encryption, and NAC.
For LA County Dept. of Health Services:
-Data encryption and password protected
-Removable Storage (USB drives, are not allowed)
Downside? Too much power and information in the hands of all employees. It may compromise the company.
What they meant by “trusting” was, everyone in the company have access to data, allowing them to be copied and stored in USB drives or other related devices without any limitations or preventive measures. Some organizations have full confidence in their employees that they will safe-keep all information shared in the organization.
Upside? Trust is great and everyone can know corporate intel inside out.