SlideShare uma empresa Scribd logo

Securing Microsoft Technologies for HITECH Compliance

Marie-Michelle Strah, PhD
Marie-Michelle Strah, PhD

This document discusses securing Microsoft technologies for HITECH compliance. It covers introducing Microsoft technologies that can help secure protected health information as required by HITECH, including SharePoint, Active Directory, and encryption. It also summarizes challenges around managing risk and complexity when connecting systems and collaborating while maintaining security. Best practices are provided around areas like governance, access controls, and an enterprise security model.

TecnologiaNegócios
1 de 36
Baixar para ler offline
Securing Microsoft Technologies for HITECH Compliance
      2 | SharePoint Saturday New York City 2011
Thanks to Our Sponsors!
Introductions Systems in Balance • • • • http://lifeincapslock.com
     5 | SharePoint Saturday New York City 2011
Context: ARRA/HITECH: INFOSEC and connected health information
What keeps a CMIO up at night?  Unstructured data    http://geekdoctor.blogspot.com/2011/10/wha t-keeps-me-up-at-night-fy12-edition.html
Minimum (NIST): Repeat After Me:
Enterprise Security Model 𝑺 = (𝑷 ∗ 𝑨 ) 𝒙 𝒚 Information Security (Collaborative Model) Equals People (all actors and agents) Times Architecture (technical, physical and administrative)
2012: From HIPAA to HITECH and “Meaningful Use”    11 | SharePoint Saturday New York City 2011
Complexity: RM, ECM and eDiscovery 𝑺 = (𝑷 ∗ 𝑨 ) do the HITECH math… 𝒙 𝒚 Application of HIPAA Security Standards to Business Associates “Business Associates”: 42 USC §17931 • Legal • Accounting New Security Breach Requirements • Administrative 42 USC §17932(j) • Claims Processing • Data Analysis Electronic Access Mandatory for • QA Patients 42 USC 17935(e) • Billing 45 CFR §160.103 Prohibited Sale of PHI without Patient Authorization 42 USC §17935(d) Consumer Engagement
Cryptzone Survey Gothenburg, 19 January 2012 Survey finds almost half of SharePoint users disregard the security within SharePoint, and copy sensitive or confidential documents to insecure hard drives, USB keys or even email it to a third party. Read more: SharePoint Users Develop Insecure Habits - FierceContentManagement
Reference models: security, enterprise architecture and compliance for healthcare
Complexity = Higher Risks and Costs
SOA: Service-Oriented Architecture “Hub” Model reduces complexity and variability while maintaining collaboration and interoperability
Challenge: connect, collaborate and compartmentalize Microsoft Connected Health Framework Business and Technical Framework (Joint Architecture) http://hce.codeplex.com/
Enterprise Security Planning  PRIVACY IMPACT ASSESSMENT  18 direct identifiers (HIPAA)  “content shielding”  data architecture         Mobile Device Management/BYOD World 18 | SharePoint Saturday New York City 2011
What usually happens… User • Active Directory Device Browser • HTTPS SharePoint • Permissions Database Storage 19 | SharePoint Saturday New York City 2011
Security Reference Architecture User • Strong authentication Device • Whole disk encryption Browser • HTTPS SharePoint • Permissions Database • Auditing & alerting Storage • Document & List encryption • Mandatory access controls 20 | SharePoint Saturday New York City 2011
Security Architecture – SPS2010 Authentication Permissions Data Level Endpoint Services Authorization UPM Hardware Business Connectivity Federated ID Security Security Security Classic/Claims Groups LOB Mobile Integration Remote IIS/STS 𝑺 = (𝑷 ∗ 𝑨 ) 𝒙 𝒚
Best Practices: privacy and security in Microsoft SharePoint Server 2010, Azure and Office365
“Can’t Do it Alone:” On Premise Security Ecosystem • Native ISV • Network • 20% • Governance • Data at Rest • UPM/IAM • 100% • 60% SP2010 ISV 23 | SharePoint Saturday New York City 2011
Sample: Security Planning Checklist  Content types (PHI/PII)  ECM/OCR  Digital Rights Management (DRM)  Business Connectivity Services and Visio Services (external data sources)  Excel, lists, SQL, custom data providers  Integrated Windows with constrained Kerberos  Metadata and tagging (PHI/PII)  Blogs and wikis (PHI)  Plan permission levels and groups (least privileges) – providers and business associates  Plan site permissions  Fine-grained permissions (item-level)  Security groups (custom)  Contribute permissions 25 | SharePoint Saturday New York City 2011
Best Practices: Preventative Model NIST Guidelines: 2 Factor Authentication Encryption of Data at Rest Trust, but verify… Encryption of Data in Motion It’s all about the data… 18 HIPAA Direct Identifiers Clinical Expertise
Governance: Adapting the Joint Commission Continuous Process Improvement Model Plan • Technical, Physical, Administrative Safeguards Document • Joint Commission, Policies, Procedures, IT Governance Train • Clinical, Administrative and Business Associates Track • Training, Compliance, Incidents, Access…. everything Review • Flexibility, Agility, Architect for Change
      29 | SharePoint Saturday New York City 2011
         30 | SharePoint Saturday New York City 2011
31 |SharePoint Saturday New York City 2011
32 |SharePoint Saturday New York City 2011
       © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc. 34 | SharePoint Saturday New York City 2011
        © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc. 35 | SharePoint Saturday New York City 2011
Thank You! • • • Phydian Systems • http://lifeincapslock.com Systems in Balance • • • •

Recomendados

SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2
SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2
SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2Marie-Michelle Strah, PhD
 
Securing the SharePoint Platform
Securing the SharePoint PlatformSecuring the SharePoint Platform
Securing the SharePoint PlatformBert Johnson
 
Highlights from the SharePoint Conference 2011
Highlights from the SharePoint Conference 2011Highlights from the SharePoint Conference 2011
Highlights from the SharePoint Conference 2011Intergen
 
SharePoint Syntex 5 Practical Uses
SharePoint Syntex 5 Practical UsesSharePoint Syntex 5 Practical Uses
SharePoint Syntex 5 Practical UsesJoel Oleson
 
Sharepoint 2010 composites
Sharepoint 2010 compositesSharepoint 2010 composites
Sharepoint 2010 compositesKashif Akram
 
Proven Practices for Office 365 Deployment, Security and Management
Proven Practices for Office 365 Deployment, Security and ManagementProven Practices for Office 365 Deployment, Security and Management
Proven Practices for Office 365 Deployment, Security and ManagementPerficient, Inc.
 
Overcoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointOvercoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointAntonioMaio2
 
Office 365 Deployment Strategies 2.0
Office 365 Deployment Strategies 2.0Office 365 Deployment Strategies 2.0
Office 365 Deployment Strategies 2.0Bert Johnson
 

Recomendados

SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2
SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2
SharePoint 2010 and Web Services: Extending Dynamics GP 2010 R2Marie-Michelle Strah, PhD
 
Securing the SharePoint Platform
Securing the SharePoint PlatformSecuring the SharePoint Platform
Securing the SharePoint PlatformBert Johnson
 
Highlights from the SharePoint Conference 2011
Highlights from the SharePoint Conference 2011Highlights from the SharePoint Conference 2011
Highlights from the SharePoint Conference 2011Intergen
 
SharePoint Syntex 5 Practical Uses
SharePoint Syntex 5 Practical UsesSharePoint Syntex 5 Practical Uses
SharePoint Syntex 5 Practical UsesJoel Oleson
 
Sharepoint 2010 composites
Sharepoint 2010 compositesSharepoint 2010 composites
Sharepoint 2010 compositesKashif Akram
 
Proven Practices for Office 365 Deployment, Security and Management
Proven Practices for Office 365 Deployment, Security and ManagementProven Practices for Office 365 Deployment, Security and Management
Proven Practices for Office 365 Deployment, Security and ManagementPerficient, Inc.
 
Overcoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointOvercoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointAntonioMaio2
 
Office 365 Deployment Strategies 2.0
Office 365 Deployment Strategies 2.0Office 365 Deployment Strategies 2.0
Office 365 Deployment Strategies 2.0Bert Johnson
 
Squeeze more 2015
Squeeze more 2015Squeeze more 2015
Squeeze more 2015nviron
 
Share Point 2010: What's in the box?
Share Point 2010: What's in the box?Share Point 2010: What's in the box?
Share Point 2010: What's in the box?Velrada
 
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...BlackBerry
 
Share Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone MicrsoftShare Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone Micrsoftguest784047
 
SharePoint as a Complete Social Intranet
SharePoint as a Complete Social IntranetSharePoint as a Complete Social Intranet
SharePoint as a Complete Social IntranetPrescient Digital Media
 
Emc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentumEmc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentumEric Griffin
 
What SharePoint is My Ferrari?
What SharePoint is My Ferrari? What SharePoint is My Ferrari?
What SharePoint is My Ferrari? Michael Hinckley
 
K Ziai Share Point At Ut
K Ziai Share Point At UtK Ziai Share Point At Ut
K Ziai Share Point At UtArt Upton
 
What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​BizPortals Solutions
 
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best PracticesEPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best PracticesEPC Group
 
SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?AntonioMaio2
 
Real world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedReal world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedAntonioMaio2
 
Share poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlantaShare poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlantaMichael Hinckley
 
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...SPTechCon
 
Microsoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner TopicsMicrosoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner TopicsChris Bortlik
 
Back Office Productivity with SharePoint
Back Office Productivity with SharePointBack Office Productivity with SharePoint
Back Office Productivity with SharePointGareth Fisher
 
SharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects PerspectiveSharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects PerspectiveChris Bortlik
 
Seminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof AhmadSeminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof AhmadMaroofAhmad
 
The New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from AtidanThe New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from AtidanDavid J Rosenthal
 
6 business connectivity services
6 business connectivity services6 business connectivity services
6 business connectivity servicesicdesktop
 
Digital Libraries & Collaboration
Digital Libraries & CollaborationDigital Libraries & Collaboration
Digital Libraries & CollaborationLorri Mon
 
FSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and BusinessFSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and BusinessLorri Mon
 

Mais conteúdo relacionado

Mais procurados

Squeeze more 2015
Squeeze more 2015Squeeze more 2015
Squeeze more 2015nviron
 
Share Point 2010: What's in the box?
Share Point 2010: What's in the box?Share Point 2010: What's in the box?
Share Point 2010: What's in the box?Velrada
 
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...BlackBerry
 
Share Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone MicrsoftShare Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone Micrsoftguest784047
 
SharePoint as a Complete Social Intranet
SharePoint as a Complete Social IntranetSharePoint as a Complete Social Intranet
SharePoint as a Complete Social IntranetPrescient Digital Media
 
Emc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentumEmc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentumEric Griffin
 
What SharePoint is My Ferrari?
What SharePoint is My Ferrari? What SharePoint is My Ferrari?
What SharePoint is My Ferrari? Michael Hinckley
 
K Ziai Share Point At Ut
K Ziai Share Point At UtK Ziai Share Point At Ut
K Ziai Share Point At UtArt Upton
 
What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​BizPortals Solutions
 
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best PracticesEPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best PracticesEPC Group
 
SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?AntonioMaio2
 
Real world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedReal world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedAntonioMaio2
 
Share poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlantaShare poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlantaMichael Hinckley
 
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...SPTechCon
 
Microsoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner TopicsMicrosoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner TopicsChris Bortlik
 
Back Office Productivity with SharePoint
Back Office Productivity with SharePointBack Office Productivity with SharePoint
Back Office Productivity with SharePointGareth Fisher
 
SharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects PerspectiveSharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects PerspectiveChris Bortlik
 
Seminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof AhmadSeminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof AhmadMaroofAhmad
 
The New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from AtidanThe New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from AtidanDavid J Rosenthal
 
6 business connectivity services
6 business connectivity services6 business connectivity services
6 business connectivity servicesicdesktop
 

Mais procurados (20)

Squeeze more 2015
Squeeze more 2015Squeeze more 2015
Squeeze more 2015
 
Share Point 2010: What's in the box?
Share Point 2010: What's in the box?Share Point 2010: What's in the box?
Share Point 2010: What's in the box?
 
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
Make the Most Out of Your Deployment of BlackBerry Workspaces: Solutions for ...
 
Share Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone MicrsoftShare Point 2010 Ecm David Gorgone Micrsoft
Share Point 2010 Ecm David Gorgone Micrsoft
 
SharePoint as a Complete Social Intranet
SharePoint as a Complete Social IntranetSharePoint as a Complete Social Intranet
SharePoint as a Complete Social Intranet
 
Emc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentumEmc World 2009 : microsoft sharepoint and emc documentum
Emc World 2009 : microsoft sharepoint and emc documentum
 
What SharePoint is My Ferrari?
What SharePoint is My Ferrari? What SharePoint is My Ferrari?
What SharePoint is My Ferrari?
 
K Ziai Share Point At Ut
K Ziai Share Point At UtK Ziai Share Point At Ut
K Ziai Share Point At Ut
 
What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​What Makes an Ideal Microsoft 365 Intranet​
What Makes an Ideal Microsoft 365 Intranet​
 
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best PracticesEPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
EPC Group SharePoint 2010 Enterprise Content Management - ECM Best Practices
 
SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?
 
Real world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedReal world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - published
 
Share poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlantaShare poinrt 2013 planning consideration sps atlanta
Share poinrt 2013 planning consideration sps atlanta
 
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
SharePoint 2010 Integration and Interoperability: What You Need to Know by Ri...
 
Microsoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner TopicsMicrosoft 365 Journey - Top 5 Emerging Customer and Partner Topics
Microsoft 365 Journey - Top 5 Emerging Customer and Partner Topics
 
Back Office Productivity with SharePoint
Back Office Productivity with SharePointBack Office Productivity with SharePoint
Back Office Productivity with SharePoint
 
SharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects PerspectiveSharePoint Syntex from an Architects Perspective
SharePoint Syntex from an Architects Perspective
 
Seminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof AhmadSeminar On Share Point By Maroof Ahmad
Seminar On Share Point By Maroof Ahmad
 
The New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from AtidanThe New Office in Today's Social Enterprise from Atidan
The New Office in Today's Social Enterprise from Atidan
 
6 business connectivity services
6 business connectivity services6 business connectivity services
6 business connectivity services
 

Destaque

Digital Libraries & Collaboration
Digital Libraries & CollaborationDigital Libraries & Collaboration
Digital Libraries & CollaborationLorri Mon
 
FSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and BusinessFSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and BusinessLorri Mon
 
FSU SLIS Wk 4 Info Services: Databases & Indexes
FSU SLIS Wk 4 Info Services: Databases & IndexesFSU SLIS Wk 4 Info Services: Databases & Indexes
FSU SLIS Wk 4 Info Services: Databases & IndexesLorri Mon
 
FSU SLIS Teaching & Technology Colloquium
FSU SLIS Teaching & Technology Colloquium FSU SLIS Teaching & Technology Colloquium
FSU SLIS Teaching & Technology Colloquium Lorri Mon
 
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics Week 12 - FSU SLIS Intro to Info Services - Government & Statistics
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics Lorri Mon
 
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...WSPDC & FEDSPUG
 
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...Marie-Michelle Strah, PhD
 
Securing Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceSecuring Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceMarie-Michelle Strah, PhD
 
It's About the Data, Stupid: Mobile Security and BYOD for Healthcare
It's About the Data, Stupid: Mobile Security and BYOD for HealthcareIt's About the Data, Stupid: Mobile Security and BYOD for Healthcare
It's About the Data, Stupid: Mobile Security and BYOD for HealthcareMarie-Michelle Strah, PhD
 
Securing Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceSecuring Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceMarie-Michelle Strah, PhD
 
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...Marie-Michelle Strah, PhD
 
Consumerization of IT: Mobile Infrastructure, Support and Security
Consumerization of IT: Mobile Infrastructure, Support and SecurityConsumerization of IT: Mobile Infrastructure, Support and Security
Consumerization of IT: Mobile Infrastructure, Support and SecurityMarie-Michelle Strah, PhD
 

Destaque (13)

Digital Libraries & Collaboration
Digital Libraries & CollaborationDigital Libraries & Collaboration
Digital Libraries & Collaboration
 
FSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and BusinessFSU SLIS Week 14 Intro to Info Services: Health, Law and Business
FSU SLIS Week 14 Intro to Info Services: Health, Law and Business
 
FSU SLIS Wk 4 Info Services: Databases & Indexes
FSU SLIS Wk 4 Info Services: Databases & IndexesFSU SLIS Wk 4 Info Services: Databases & Indexes
FSU SLIS Wk 4 Info Services: Databases & Indexes
 
FSU SLIS Teaching & Technology Colloquium
FSU SLIS Teaching & Technology Colloquium FSU SLIS Teaching & Technology Colloquium
FSU SLIS Teaching & Technology Colloquium
 
Coremanual2
Coremanual2Coremanual2
Coremanual2
 
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics Week 12 - FSU SLIS Intro to Info Services - Government & Statistics
Week 12 - FSU SLIS Intro to Info Services - Government & Statistics
 
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...
FEDSPUG April 2014: Visual Studio 2013 for Application Lifecycle Management &...
 
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...
Strategic, Privacy and Security Considerations for Adoption of Cloud and Emer...
 
Securing Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceSecuring Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH Compliance
 
It's About the Data, Stupid: Mobile Security and BYOD for Healthcare
It's About the Data, Stupid: Mobile Security and BYOD for HealthcareIt's About the Data, Stupid: Mobile Security and BYOD for Healthcare
It's About the Data, Stupid: Mobile Security and BYOD for Healthcare
 
Securing Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH ComplianceSecuring Microsoft Technologies for HITECH Compliance
Securing Microsoft Technologies for HITECH Compliance
 
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...
The Myth of the SharePoint Unicorn: Recruiting and Staffing SharePoint Teams ...
 
Consumerization of IT: Mobile Infrastructure, Support and Security
Consumerization of IT: Mobile Infrastructure, Support and SecurityConsumerization of IT: Mobile Infrastructure, Support and Security
Consumerization of IT: Mobile Infrastructure, Support and Security
 

Semelhante a Securing Microsoft Technologies for HITECH Compliance

Security and Privacy in SharePoint 2010: Healthcare
Security and Privacy in SharePoint 2010: HealthcareSecurity and Privacy in SharePoint 2010: Healthcare
Security and Privacy in SharePoint 2010: HealthcareMarie-Michelle Strah, PhD
 
SharePoint Security Playbook [eBook]
SharePoint Security Playbook [eBook]SharePoint Security Playbook [eBook]
SharePoint Security Playbook [eBook]Imperva
 
2015 06-wso2 coneu-closingkeynote-asanka
2015 06-wso2 coneu-closingkeynote-asanka2015 06-wso2 coneu-closingkeynote-asanka
2015 06-wso2 coneu-closingkeynote-asankaAsanka Abeysinghe
 
Content Chaos: Why SharePoint and Office 365 Aren't the (only) Answer
Content Chaos: Why SharePoint and Office 365 Aren't the (only) AnswerContent Chaos: Why SharePoint and Office 365 Aren't the (only) Answer
Content Chaos: Why SharePoint and Office 365 Aren't the (only) AnswerZia Consulting
 
Solution day : Running infrastructure like a cloud speed and agile
Solution day : Running infrastructure like a cloud speed and agileSolution day : Running infrastructure like a cloud speed and agile
Solution day : Running infrastructure like a cloud speed and agilePT Datacomm Diangraha
 
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...Bill England
 
SharePoint Saturday Belgium 2014 - A practical guide for navigating the clouds
SharePoint Saturday Belgium 2014 - A practical guide for navigating the cloudsSharePoint Saturday Belgium 2014 - A practical guide for navigating the clouds
SharePoint Saturday Belgium 2014 - A practical guide for navigating the cloudsBIWUG
 
TechFuse 2012: Cloud and Mobile Computing
TechFuse 2012: Cloud and Mobile ComputingTechFuse 2012: Cloud and Mobile Computing
TechFuse 2012: Cloud and Mobile ComputingAvtex
 
InfoFusion Overview And Roadmap
InfoFusion Overview And RoadmapInfoFusion Overview And Roadmap
InfoFusion Overview And RoadmapMarten den Haring
 
CISO's Guide to Securing SharePoint
CISO's Guide to Securing SharePointCISO's Guide to Securing SharePoint
CISO's Guide to Securing SharePointImperva
 
Hybrid IT, Laying the "Right Mix" Foundation for Digital Transformation
Hybrid IT, Laying the "Right Mix" Foundation for Digital TransformationHybrid IT, Laying the "Right Mix" Foundation for Digital Transformation
Hybrid IT, Laying the "Right Mix" Foundation for Digital TransformationPT Datacomm Diangraha
 
Spca2014 navigating clouds sp_con14_mackie
Spca2014 navigating clouds sp_con14_mackieSpca2014 navigating clouds sp_con14_mackie
Spca2014 navigating clouds sp_con14_mackieNCCOMMS
 
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...Andris Soroka
 
Webinar: Take Control of SharePoint Security
Webinar: Take Control of SharePoint SecurityWebinar: Take Control of SharePoint Security
Webinar: Take Control of SharePoint SecurityAntonioMaio2
 
Privacy audittalkfinal
Privacy audittalkfinalPrivacy audittalkfinal
Privacy audittalkfinalAlan Hartman
 
Uncover the Benefits of Office 365 & Windows Azure
Uncover the Benefits of Office 365 & Windows AzureUncover the Benefits of Office 365 & Windows Azure
Uncover the Benefits of Office 365 & Windows AzureSentri
 
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...HyTrust
 
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...SPTechCon
 
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...Stichting ePortfolio Support
 

Semelhante a Securing Microsoft Technologies for HITECH Compliance (20)

Security and Privacy in SharePoint 2010: Healthcare
Security and Privacy in SharePoint 2010: HealthcareSecurity and Privacy in SharePoint 2010: Healthcare
Security and Privacy in SharePoint 2010: Healthcare
 
SharePoint Security Playbook [eBook]
SharePoint Security Playbook [eBook]SharePoint Security Playbook [eBook]
SharePoint Security Playbook [eBook]
 
2015 06-wso2 coneu-closingkeynote-asanka
2015 06-wso2 coneu-closingkeynote-asanka2015 06-wso2 coneu-closingkeynote-asanka
2015 06-wso2 coneu-closingkeynote-asanka
 
Content Chaos: Why SharePoint and Office 365 Aren't the (only) Answer
Content Chaos: Why SharePoint and Office 365 Aren't the (only) AnswerContent Chaos: Why SharePoint and Office 365 Aren't the (only) Answer
Content Chaos: Why SharePoint and Office 365 Aren't the (only) Answer
 
Solution day : Running infrastructure like a cloud speed and agile
Solution day : Running infrastructure like a cloud speed and agileSolution day : Running infrastructure like a cloud speed and agile
Solution day : Running infrastructure like a cloud speed and agile
 
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...
Aiim Seminar - SharePoint Crossroads May 23 - Bending but Not Breaking - Spea...
 
SharePoint Saturday Belgium 2014 - A practical guide for navigating the clouds
SharePoint Saturday Belgium 2014 - A practical guide for navigating the cloudsSharePoint Saturday Belgium 2014 - A practical guide for navigating the clouds
SharePoint Saturday Belgium 2014 - A practical guide for navigating the clouds
 
TechFuse 2012: Cloud and Mobile Computing
TechFuse 2012: Cloud and Mobile ComputingTechFuse 2012: Cloud and Mobile Computing
TechFuse 2012: Cloud and Mobile Computing
 
InfoFusion Overview And Roadmap
InfoFusion Overview And RoadmapInfoFusion Overview And Roadmap
InfoFusion Overview And Roadmap
 
CISO's Guide to Securing SharePoint
CISO's Guide to Securing SharePointCISO's Guide to Securing SharePoint
CISO's Guide to Securing SharePoint
 
Next_Gen_Overview
Next_Gen_OverviewNext_Gen_Overview
Next_Gen_Overview
 
Hybrid IT, Laying the "Right Mix" Foundation for Digital Transformation
Hybrid IT, Laying the "Right Mix" Foundation for Digital TransformationHybrid IT, Laying the "Right Mix" Foundation for Digital Transformation
Hybrid IT, Laying the "Right Mix" Foundation for Digital Transformation
 
Spca2014 navigating clouds sp_con14_mackie
Spca2014 navigating clouds sp_con14_mackieSpca2014 navigating clouds sp_con14_mackie
Spca2014 navigating clouds sp_con14_mackie
 
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...
DSS - ITSEC Conference - Protected-Networks - An Open Door May Tempt a Saint ...
 
Webinar: Take Control of SharePoint Security
Webinar: Take Control of SharePoint SecurityWebinar: Take Control of SharePoint Security
Webinar: Take Control of SharePoint Security
 
Privacy audittalkfinal
Privacy audittalkfinalPrivacy audittalkfinal
Privacy audittalkfinal
 
Uncover the Benefits of Office 365 & Windows Azure
Uncover the Benefits of Office 365 & Windows AzureUncover the Benefits of Office 365 & Windows Azure
Uncover the Benefits of Office 365 & Windows Azure
 
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
 
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...
What’s your Social IQ? Succeeding with SharePoint Social by Chris McNulty - S...
 
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...
10052012 luc vervenne synergetics van syntax portfolio naar semantische uitwi...
 

Mais de Marie-Michelle Strah, PhD

Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...
Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...
Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...Marie-Michelle Strah, PhD
 
Relational Productivity Applications: SharePoint 2010 and CRM 2011
Relational Productivity Applications: SharePoint 2010 and CRM 2011Relational Productivity Applications: SharePoint 2010 and CRM 2011
Relational Productivity Applications: SharePoint 2010 and CRM 2011Marie-Michelle Strah, PhD
 
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...Marie-Michelle Strah, PhD
 
Best Practices in Supply Chain Management: SharePoint
Best Practices in Supply Chain Management: SharePointBest Practices in Supply Chain Management: SharePoint
Best Practices in Supply Chain Management: SharePointMarie-Michelle Strah, PhD
 
Best Practices in SharePoint for Healthcare: US Army Medical Command
Best Practices in SharePoint for Healthcare: US Army Medical CommandBest Practices in SharePoint for Healthcare: US Army Medical Command
Best Practices in SharePoint for Healthcare: US Army Medical CommandMarie-Michelle Strah, PhD
 
Microsoft Technologies and Work Management Success and Women in SharePoint: D...
Microsoft Technologies and Work Management Success and Women in SharePoint: D...Microsoft Technologies and Work Management Success and Women in SharePoint: D...
Microsoft Technologies and Work Management Success and Women in SharePoint: D...Marie-Michelle Strah, PhD
 
Change Management and User Adoption in Hierarchical Organizations: SharePoint...
Change Management and User Adoption in Hierarchical Organizations: SharePoint...Change Management and User Adoption in Hierarchical Organizations: SharePoint...
Change Management and User Adoption in Hierarchical Organizations: SharePoint...Marie-Michelle Strah, PhD
 
Business Process Re-Engineering and Improved Healthcare Outcomes
Business Process Re-Engineering and Improved Healthcare OutcomesBusiness Process Re-Engineering and Improved Healthcare Outcomes
Business Process Re-Engineering and Improved Healthcare OutcomesMarie-Michelle Strah, PhD
 
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 Update
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 UpdateTricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 Update
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 UpdateMarie-Michelle Strah, PhD
 
Tricky Fit: Knowledge Management and SharePoint (Healthcare)
Tricky Fit: Knowledge Management and SharePoint (Healthcare)Tricky Fit: Knowledge Management and SharePoint (Healthcare)
Tricky Fit: Knowledge Management and SharePoint (Healthcare)Marie-Michelle Strah, PhD
 

Mais de Marie-Michelle Strah, PhD (11)

Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...
Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...
Enterprise Architecture Planning: 3 Things You Need to Know About SharePoint ...
 
Relational Productivity Applications: SharePoint 2010 and CRM 2011
Relational Productivity Applications: SharePoint 2010 and CRM 2011Relational Productivity Applications: SharePoint 2010 and CRM 2011
Relational Productivity Applications: SharePoint 2010 and CRM 2011
 
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...
Microsoft Convergence DayOne: Leveraging SharePoint within Your Dynamics GP W...
 
Best Practices in Supply Chain Management: SharePoint
Best Practices in Supply Chain Management: SharePointBest Practices in Supply Chain Management: SharePoint
Best Practices in Supply Chain Management: SharePoint
 
Best Practices in SharePoint for Healthcare: US Army Medical Command
Best Practices in SharePoint for Healthcare: US Army Medical CommandBest Practices in SharePoint for Healthcare: US Army Medical Command
Best Practices in SharePoint for Healthcare: US Army Medical Command
 
Case Study for a SharePoint SDLC
Case Study for a SharePoint SDLCCase Study for a SharePoint SDLC
Case Study for a SharePoint SDLC
 
Microsoft Technologies and Work Management Success and Women in SharePoint: D...
Microsoft Technologies and Work Management Success and Women in SharePoint: D...Microsoft Technologies and Work Management Success and Women in SharePoint: D...
Microsoft Technologies and Work Management Success and Women in SharePoint: D...
 
Change Management and User Adoption in Hierarchical Organizations: SharePoint...
Change Management and User Adoption in Hierarchical Organizations: SharePoint...Change Management and User Adoption in Hierarchical Organizations: SharePoint...
Change Management and User Adoption in Hierarchical Organizations: SharePoint...
 
Business Process Re-Engineering and Improved Healthcare Outcomes
Business Process Re-Engineering and Improved Healthcare OutcomesBusiness Process Re-Engineering and Improved Healthcare Outcomes
Business Process Re-Engineering and Improved Healthcare Outcomes
 
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 Update
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 UpdateTricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 Update
Tricky Fit: Knowledge Management and the DoD (Healthcare) - May 2010 Update
 
Tricky Fit: Knowledge Management and SharePoint (Healthcare)
Tricky Fit: Knowledge Management and SharePoint (Healthcare)Tricky Fit: Knowledge Management and SharePoint (Healthcare)
Tricky Fit: Knowledge Management and SharePoint (Healthcare)
 

Último

Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 

Último (20)

Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 

Securing Microsoft Technologies for HITECH Compliance

  • 2.       2 | SharePoint Saturday New York City 2011
  • 3. Thanks to Our Sponsors!
  • 4. Introductions Systems in Balance • • • • http://lifeincapslock.com
  • 5.     5 | SharePoint Saturday New York City 2011
  • 6. Context: ARRA/HITECH: INFOSEC and connected health information
  • 7. What keeps a CMIO up at night?  Unstructured data    http://geekdoctor.blogspot.com/2011/10/wha t-keeps-me-up-at-night-fy12-edition.html
  • 8.
  • 10. Enterprise Security Model 𝑺 = (𝑷 ∗ 𝑨 ) 𝒙 𝒚 Information Security (Collaborative Model) Equals People (all actors and agents) Times Architecture (technical, physical and administrative)
  • 11. 2012: From HIPAA to HITECH and “Meaningful Use”    11 | SharePoint Saturday New York City 2011
  • 12. Complexity: RM, ECM and eDiscovery 𝑺 = (𝑷 ∗ 𝑨 ) do the HITECH math… 𝒙 𝒚 Application of HIPAA Security Standards to Business Associates “Business Associates”: 42 USC §17931 • Legal • Accounting New Security Breach Requirements • Administrative 42 USC §17932(j) • Claims Processing • Data Analysis Electronic Access Mandatory for • QA Patients 42 USC 17935(e) • Billing 45 CFR §160.103 Prohibited Sale of PHI without Patient Authorization 42 USC §17935(d) Consumer Engagement
  • 13. Cryptzone Survey Gothenburg, 19 January 2012 Survey finds almost half of SharePoint users disregard the security within SharePoint, and copy sensitive or confidential documents to insecure hard drives, USB keys or even email it to a third party. Read more: SharePoint Users Develop Insecure Habits - FierceContentManagement
  • 14. Reference models: security, enterprise architecture and compliance for healthcare
  • 15. Complexity = Higher Risks and Costs
  • 16. SOA: Service-Oriented Architecture “Hub” Model reduces complexity and variability while maintaining collaboration and interoperability
  • 17. Challenge: connect, collaborate and compartmentalize Microsoft Connected Health Framework Business and Technical Framework (Joint Architecture) http://hce.codeplex.com/
  • 18. Enterprise Security Planning  PRIVACY IMPACT ASSESSMENT  18 direct identifiers (HIPAA)  “content shielding”  data architecture         Mobile Device Management/BYOD World 18 | SharePoint Saturday New York City 2011
  • 19. What usually happens… User • Active Directory Device Browser • HTTPS SharePoint • Permissions Database Storage 19 | SharePoint Saturday New York City 2011
  • 20. Security Reference Architecture User • Strong authentication Device • Whole disk encryption Browser • HTTPS SharePoint • Permissions Database • Auditing & alerting Storage • Document & List encryption • Mandatory access controls 20 | SharePoint Saturday New York City 2011
  • 21. Security Architecture – SPS2010 Authentication Permissions Data Level Endpoint Services Authorization UPM Hardware Business Connectivity Federated ID Security Security Security Classic/Claims Groups LOB Mobile Integration Remote IIS/STS 𝑺 = (𝑷 ∗ 𝑨 ) 𝒙 𝒚
  • 22. Best Practices: privacy and security in Microsoft SharePoint Server 2010, Azure and Office365
  • 23. “Can’t Do it Alone:” On Premise Security Ecosystem • Native ISV • Network • 20% • Governance • Data at Rest • UPM/IAM • 100% • 60% SP2010 ISV 23 | SharePoint Saturday New York City 2011
  • 24.
  • 25. Sample: Security Planning Checklist  Content types (PHI/PII)  ECM/OCR  Digital Rights Management (DRM)  Business Connectivity Services and Visio Services (external data sources)  Excel, lists, SQL, custom data providers  Integrated Windows with constrained Kerberos  Metadata and tagging (PHI/PII)  Blogs and wikis (PHI)  Plan permission levels and groups (least privileges) – providers and business associates  Plan site permissions  Fine-grained permissions (item-level)  Security groups (custom)  Contribute permissions 25 | SharePoint Saturday New York City 2011
  • 26. Best Practices: Preventative Model NIST Guidelines: 2 Factor Authentication Encryption of Data at Rest Trust, but verify… Encryption of Data in Motion It’s all about the data… 18 HIPAA Direct Identifiers Clinical Expertise
  • 27. Governance: Adapting the Joint Commission Continuous Process Improvement Model Plan • Technical, Physical, Administrative Safeguards Document • Joint Commission, Policies, Procedures, IT Governance Train • Clinical, Administrative and Business Associates Track • Training, Compliance, Incidents, Access…. everything Review • Flexibility, Agility, Architect for Change
  • 28.
  • 29.      29 | SharePoint Saturday New York City 2011
  • 30.         30 | SharePoint Saturday New York City 2011
  • 31. 31 |SharePoint Saturday New York City 2011
  • 32. 32 |SharePoint Saturday New York City 2011
  • 33.
  • 34.       © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc. 34 | SharePoint Saturday New York City 2011
  • 35.        © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc. 35 | SharePoint Saturday New York City 2011
  • 36. Thank You! • • • Phydian Systems • http://lifeincapslock.com Systems in Balance • • • •