Directive Blogs

The Health Insurance Portability and Accountability Act is a regulation passed by the US congress in 1996 to help streamline the healthcare system while maintaining individual ePI privacy over individuals’ health records. This regulation was put in place to allow people to transfer their health coverage, but also to minimize the risk individuals take on as far as fraud and abuse of their health records is concerned. This week we’d thought we’d discuss four ways your technology can help your organization keep its HIPAA compliance. 

If you have a computer, it has data on it that you’ve stored. Whether it’s the novel you’ve been working on in your spare time or pictures from your kid’s sixth grade graduation on your home PC, or the databases and applications that your business’ infrastructure supports, all of this data is generally stored in exactly the same way. Whatever your case, you should know that your data is terrifyingly fragile - far too fragile to ever be kept in just one place. Let’s dive deeper.

Today, the threats businesses encounter from the Internet are more frequent and dangerous than any previous threats. To avoid being the victim of a cyberattack, you will need strategies and procedures aimed at mitigating them. Let’s look at some strategies you need to consider if you are to keep the threats off your network. 

It is remarkable how much trust people have in Internet-based companies. Not just that they will fulfill the expectations placed on them, but that people routinely provide extremely sensitive information to these companies without thinking for a second about what they do with it. We will take a look at data collection practices, what Internet companies want with that data, and how millions of people every year become victims because they entrust their PII (Personally Identifiable Information) to corporations that promptly lose it.

Your business needs to have data backup and disaster recovery, period. There is no exception to this rule. The hard truth of the matter is that your business is risking far too much by not implementing data backup and disaster recovery. Today, we’ll examine scenarios in which a business might find its data threatened, as well as how modern businesses can keep their data safe, even when the world seems out to get them.

If your work requires you to store medical data, you should be aware of how important your data security is, as a problem could potentially put your business at risk of closing up shop permanently. Security has to be a priority with so many regulations setting compliance standards that must be followed. How can you balance the effectiveness of your business without undermining its security?

With the mountainous success of Game of Thrones, the BBC-produced show has always been understandably concerned with their security. However, with the show officially overtaking the original source material, A Song of Ice and Fire, there is an increased presence of curious fans and members of the press with an eye out for a sneak peek at the action. This has led to more; somewhat more modern measures being adopted to keep the production’s secrets safe.

Data security, always an important topic, has been made even more urgent by the Equifax data breach and the fact that 143 million users had their personal information stolen after entrusting it (or not) to Equifax. You need to consider what would happen if your business were on the receiving end of a data breach, and prepare to handle this truly unpleasant circumstance.

If you’ve watched the news lately, chances are you’ve seen the Equifax breach and the ridiculous fallout it has caused. Over 133 million personal records have been stolen. While it’s difficult not to feel individually victimized by such a breach, it’s important to remember that it’s often not your specific credentials targeted by hackers. Since businesses often hold onto valuable information, they have big crosshairs painted onto them. It doesn’t even stop there--any vendors or partners you deal with are also in danger of hacking attacks.

Most small businesses don’t have the luxury of an in-house IT department. Even if they do have one, it’s likely a small department run by a handful of folks who have their hands full with either implementation projects or simply staying afloat. With opportunities to invest in the improvement of your infrastructure few and far between, a network audit can help you identify where your network suffers most, and what you can do about it.

As invaluable as the security solutions that protect a network are, they can be effectively rendered useless if a cybercriminal is skilled in social engineering. Social engineering is the practice of using manipulation to access protected resources, as we will review later. If your business and its team are vulnerable to a social engineering attempt, you are missing a critical piece of your data security strategy.

You can never know whether or not that app you just downloaded to your smartphone can expose your data or identity to risk. While Google Play and the iTunes store certainly put efforts into ensuring that users can safely browse their app stores, it’s unlikely that they can find every single malicious app out there before it infects someone’s device. Therefore, you need to consider the following measures to ensure that you don’t put your business at risk by downloading unsecure apps.

As though the initial news of Equifax’s 2017 data exposure wasn’t bad enough, it has been discovered that there are even more victims than previously thought. While news like this is never good, it can bring a silver lining if the opportunities that such news presents are seized.

Security is an aspect of running a business that absolutely cannot be ignored, regardless of whether or not you see it as a considerable issue in the near future. The fact remains that your organization will always be at risk unless you take actions to keep it safe today. By taking advantage of some of the latest and greatest security tools on the market, you’ll be able to protect not only from the basic threats, but more advanced ones as well.