VMware and Intel‘s health and life sciences division have partnered to provide information and assessment services in an effort to help healthcare information technology organizations mitigate security risks.
The team will work to identify potential risks and evaluate existing security policies, measures and plans of healthcare organizations in order to build on their security postures as part of Intel’s Healthcare Security Readiness Program, VMware said Monday.
As a participant in Intel’s Healthcare Security Readiness Program, VMware offers healthcare organizations a one-hour, complimentary, confidential engagement with a security assessor to measure their organization’s technical security priorities and safeguards using a unique healthcare security maturity model.
To date the model has been used by more than 60 healthcare organizations across nine countries to create a baseline against which participating organizations can measure their technical readiness across 42 security capabilities. The model also looks at administrative controls such as policies, incident response plans and business continuity/disaster recovery capabilities.
Participating healthcare organizations will receive a report summarizing the findings, including their maturity level, how they compare with the rest of the healthcare industry, any gaps in their security and a multi-year plan to improve their infrastructure and security preparedness.
This report can also help organizations identify where addressing a gap may also help them achieve compliance with privacy and security regulations, data protection laws and standards specific to the healthcare industry. These include the Health Information Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS), and the General Data Protection Regulation(GDPR), among others.