![Page 1: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/1.jpg)
Protecting Patient Data,
Credit Cards, and Healthcare
Organizations
12 23 2020
Cybersecurity and risk-management services you can trust.
![Page 2: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/2.jpg)
Healthcare Solutions
About Carson & SAINT
Cybersecurity Products12 23 2020
Agenda
Protecting Patient Data,
Credit Cards, and Healthcare
Organizations
![Page 3: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/3.jpg)
Healthcare Solutions
Trusted Partner to our Customers
Award-Winning Security
Customers: Public and Private
Deep Experience
Cybersecurity technology
Industry-specific solutions
Healthcare security servicesCybers
ecuri
ty a
nd r
isk-m
anagem
ent
About C&S Cybersecurity Products
Cybersecurity Services and Software Experts
![Page 4: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/4.jpg)
What does Trusted Partner mean?
Dedicated, committed team
Decades of experience
Full stack of essential technology, operations, and procedures
SAINT vulnerability scanning suite
PCI Qualified Security Assessor
PCI Approved Scanning Vendor
Experts in HIPAA and healthcare risk
Your
Tru
sted P
art
ner
About C&S Healthcare Solutions Cybersecurity Products
![Page 5: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/5.jpg)
Types
of
Cust
om
ers
About C&S
Industries
That Trust Carson & SAINT
_____________________
Medical Centers
Hospitals
Assisted Living Facilities
Educational Institutions
(Local Colleges, Major Universities)
Financial Organizations
Payment Card Service Providers
Retailers and Product Vendors
Small and Medium Businesses
Large-Scale Enterprises
Local, State, and Federal Government
Utilities
Compliance Organizations
Managed Services Providers
Managed Security Service Providers
Healthcare Solutions Cybersecurity Products
![Page 6: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/6.jpg)
HIP
AA E
xpert
ise
About C&S
Lutheran Social Ministries of Maryland
(CCRC)
Department of Health and Human Services
Hanover Hospital
Harvard Medical School
Integrated Health Management Solutions
National Institutes of Health
Southern Tier Pediatrics
UMPC – University of
Pittsburgh Medical Center
Veterans Administration
Some of the Healthcare Organizations
That Trust Carson & SAINT
______________________________
About C&S Healthcare Solutions Cybersecurity Products
![Page 7: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/7.jpg)
Oth
er
Cust
om
ers
About C&S
Other Organizations
That Trust Carson & SAINT
_____________________
Federal Trade Commission
Nuclear Regulatory Commission
Department of Homeland Security
Defense Information Systems Agency
General Services Administration
Healthcare Solutions Cybersecurity Products
![Page 8: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/8.jpg)
Values We Share
About C&S
Management
ServicesGet answers.
Reduce risk.
Industry
SolutionsFind your answer.
Trust our experience.
Cybersecurity
ProductsTake control.
Manage risk.
PartnersMaximize service.
Build success.
Healthcare Solutions
testCyber Tactics without Cyber Strategy
is the breeding-ground of breaches
Cybersecurity Products
![Page 9: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/9.jpg)
Risk & Gap Analysis
Risk management, Remediation Roadmaps
HIPAA Security Officer, HIPAA Policies & Procedures
Security Awareness Training Materials
Improve organizational wellbeing
Full spectrum of services and technologies
Experience with both large and small organizations
Decades of experience
HIP
AA E
xpert
ise
About C&S Healthcare Solutions Cybersecurity Products
HIPAA: We Make it work for you
![Page 10: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/10.jpg)
PRODUCE COMPLETE
RISK ANALYSIS
How
We’r
e D
iffe
rent
Physical
SafeguardsTechnical
Safeguards
Administrative
SafeguardsOrganizational
Safeguards
Policies and
Procedures
FOR ALL HIPAA REQUIREMENTS
Privacy
Security
Breach
Cybersecurity ProductsHealthcare SolutionsAbout C&S
![Page 11: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/11.jpg)
Information Assurance
• Advanced degrees
• Technical certifications:
Our
Expert
sAbout C&S
PCI ASV/QSA
CEH
CISA
CISSP
CRISC
GPEN
GWAPT
ISO 27001
LPT
Subject Matter Experts
• Compliance certifications:
FINRA
FISMA
ISO 27001
SEC
SOX
HIPAA
PCI ASV/QSA
FedRAMP
FERPA
FFIEC
Cybersecurity ProductsHealthcare Solutions
![Page 12: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/12.jpg)
Credit card use in Healthcare
Medical services
Gift shops
Hospital café
Standards synergy: HIPAA + PCI
strong standards of HIPAA
strong technical requirements of PCI
HIP
AA a
nd P
CI Com
pliance
About C&S Cybersecurity ProductsHealthcare Solutions
HIPAA and PCI – Build a more secure Community
![Page 13: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/13.jpg)
Inte
gra
tion P
oin
ts
About
Our goal is to show corporate risk teams that by joining their standards, methodologies and desires to make their organization safe with more than just the output of SAINT, but the meanings, implications and application of the SAINT responses and risk vectors, they have the ability to create a single, seamless, solution to their cyber risks.
Any cybersecurity
report that never
leaves IT is ineffectual
Healthcare Solutions Cybersecurity Products
![Page 14: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/14.jpg)
Start where you are weakest
How
We’r
e D
iffe
rent
SAINTDiscovery
SAINTContent
SAINTScans
Know Organizational Risk
About C&S Cybersecurity ProductsHealthcare Solutions
![Page 15: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/15.jpg)
• HIPAA & PCI compliance
scanning
• Discovery Scanning
• Vulnerability management
• Configuration assessment
• Social engineering
• Content Search for Credit
cards and social security #
Securi
ty S
uit
e C
apabilit
ies
About C&S
• Penetration testing
• Asset management
• Advanced analytics
• Incident response
• Reporting
• Third-party integration
Cybersecurity ProductsHealthcare Solutions
___________________________________________________________________________________
![Page 16: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/16.jpg)
65Countries
1,876,712+ASV Attestations
20,845,653+ Customer Assets Scanned Annually
The W
orl
d T
rust
s C
ars
on &
SA
INT
About C&S Cybersecurity ProductsHealthcare Solutions
![Page 17: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/17.jpg)
SA
INT F
eatu
res
and O
fferi
ngs
The SAINT Security Suite provides a
single, fully-integrated suite of security
capabilities that scale from small to
large deployments.
Feature highlights:
➢ Centralized management console
➢ Highly scalable (distributed scan
architecture)
➢Multi-tenancy support
➢ Agent and agentless scan options
➢ Asset classification
➢ VPC and instance mapping for cloud
➢ Custom severities
➢ Custom policies
About C&S Healthcare Solutions Cybersecurity Products
![Page 18: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/18.jpg)
SA
INT F
eatu
res
and O
fferi
ngs
The SAINT Security Suite provides a
single, fully-integrated suite of
security capabilities that scale from
small to large deployments.
Feature highlights (continued):
➢ Vulnerability assessments (VA)
➢ Credentialed and un-credentialed
scanning
➢ Social engineering tools
➢ Penetration testing
➢ Configuration auditing (NIST and CIS)
➢ Remediation ticketing
➢ Pre-designed and customizable report
templates
➢ Pre-configured compliance scan policies and report
templates
➢ REST API and third-party integration support
About C&S Healthcare Solutions Cybersecurity Products
![Page 19: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/19.jpg)
SA
INT F
eatu
res
and O
fferi
ngs
About C&S Healthcare Solutions Cybersecurity Products
![Page 20: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/20.jpg)
Inst
all T
opolo
gie
s About C&S Healthcare Solutions Cybersecurity Products
![Page 21: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/21.jpg)
AW
S –
Thre
e A
MI O
fferi
ngs
I. SAINT (BYOL) AMI – This AMI
provides the fully integrated
capabilities of SAINT Security
Suite.
II. SAINT Pre-authorized AMI –
This offering provides users
with a vulnerability scanning
engine that has been pre-
approved by the AWS
architecture team to scan into
the EC2 instance.
III. SAINT (With License) AMI –
Like the SAINT (BYOL) AMI,
this AMI provides
preconfigured license to
support on-demand scanning,
with use automatically
applied to customer’s AWS
account.
About C&S Healthcare Solutions Cybersecurity Products
![Page 22: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/22.jpg)
SA
INT A
rchit
ectu
re
Application is delivered via a desktop browser
interface or Command-Line Interface.
Host requests and application handling are
executed from the REST API – delivery is
executed through Model, View, Controller
framework.
Middleware functions perform transaction
handling and session management.
Scan engines execute host discovery, manage
policies, deliver scan probes, perform data
acquisition, and perform fact and vulnerability
correlation.
About C&S Healthcare Solutions Cybersecurity Products
![Page 23: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/23.jpg)
Scan E
ngin
e A
rchit
ectu
re
The target hosts specified in
the scan job together with
the policy engine set the
parameters for the target
acquisition component to
discover the targets to scan.
This results in the execution
of probes and data
acquisition.
The resulting facts are stored,
in addition to being used by
the inference engine to
discover additional hosts,
schedule additional probes,
and infer additional facts.
About C&S Healthcare Solutions Cybersecurity Products
![Page 24: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/24.jpg)
Inte
rfacin
g W
ith S
AIN
T A
PI
Healthcare Solutions
API Request
GET /scanjob/1
API Service
4242/TCP
API Response
HTTP/1.0 200 OK(See Example 2)
Datastore
Generate
authentication
token
Format API Call
(See Example 1)
HTTP GET, POST,
PUT, or DELETE
request .
The SAINT API is designed for
maximum flexibility and depth
of operation.
This well-defined interface
allows the customer to wrap
SAINT capabilities into virtually
any environment and perform
all of the essential functions
required for a robust
vulnerability management
program.
About C&S Cybersecurity Products
![Page 25: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/25.jpg)
PRODUCE COMPLETE
RESULTS THAT
How
We’r
e D
iffe
rent
Full-Stack Tech StandardsServices Knowledge Experience
YOUR ORGANIZATIONAL RISK
Show
Guide
Solve
Healthcare Solutions Cybersecurity ProductsCybersecurity ProductsAbout C&S
![Page 26: Protecting Patient Data, Credit Cards, and Healthcare Organizations · 2021. 1. 6. · FFIEC Healthcare Solutions Cybersecurity Products. Credit card use in Healthcare ... discover](https://reader035.vdocuments.us/reader035/viewer/2022071502/612278baaa7f6b32ec7e8b74/html5/thumbnails/26.jpg)
Thank Y
ou
carson-saint.com
301.656.0521