A new software package for healthcare stakeholders possessing protected health information is designed to help them proactively identify emerging cybersecurity threats and predict the damage that could be done.

The software is called CyberVision and comes from HITRUST, an industry stakeholder coalition working to improve cybersecurity, which built the product with NSS Labs, an information technology security testing vendor.

Many security models today are reactive and focus on determining if an information network has been breached, says Daniel Nutkis, CEO at HITRUST. What has been needed is technology to test tens of thousands of factors to evaluate an organization’s information defenses.

“Organizations aren’t sure what to focus on; they need to better know the threats out there and the impact on their servers, firewalls and other components to assess effectiveness,” he adds. “Do they own specific products that increasingly are under attack that they can focus on?”

The goal of CyberVision is to assess threats in unique environments down to the applications and system level to find the one or two percent of threats that are most dangerous and don’t have policies established to combat, and quit chasing the other 98 percent.

For organizations considering changing their protection software, CyberVision also aids in assessing which anti-virus, anti-malware and firewall software has been the top performer during a specific time period, such as the last 60 days. That can help an organization make a decision on which vendors better maintain and update their products.

CyberVision will be available in a free version to test defenses in one location, such as a server or firewall, and via a subscription model that can evaluate the effectiveness of various combinations of multiple security products and benchmark performance over time.

The free software will be available starting March 9 and the subscription-based product will be available by April, Nutkis says. Pricing has not yet been finalized. More information is available here.

Other HITRUST services include free monthly cyber threat briefings in partnership with the Department of Health and Human Services, launching of real but harmless attacks on a participating organization to assess how well it recognizes and responds to the attack (benevolent hacking), and Cyber Threat XChange, an automated service to collect, analyze and share threat data.

Register or login for access to this item and much more

All Health Data Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access