Glacier Eye Clinic

Problem Statement

The leadership team at Glacier Eye Clinic wanted to make sure they were compliant with HIPAA's cybersecurity rules, protecting their patient's information, and doing what's best with their technology spend and business resilience.

Solution

Adversis started with understanding the business environment through a security risk assessment. This involved looking at risks and goes above and beyond the HIPAA (Cyber) Security Rule requirements.

Leveraging experience based in ethical hacking, using advanced audit techniques, and pragmatic methods for assessing realistic risks, Adversis began the process of making sure the organization was compliant, had no hidden exposures, and fully understood their current state.

Translating technical jargon into language the rest of us can understand, this assessment allowed Glacier Eye Clinic to know their current state of resilience and provided a clear path forward for improvement and compliance without undue impact to patient care and operations.

Adversis created detailed project plans and timelines and worked with Glacier Eye Clinic's administrative team to implement processes and training that make a real difference. Among these included support for strong offline processes, secure account management and financial transaction verification to reduce business email compromise events. In person training brought personalized employee vigilance to further increase the team's technology safety awareness.

Adversis worked with the Clinic's IT team to strategically implement effective cybersecurity measures. Adversis recommended fully utilizing the capabilities of its existing security technology without expensive hardware upgrades. Additional configuration changes were made to remove previously unknown technology risks and eliminate certain opportunities for compromise. This led to cost savings, substantially lower liability, and peace of mind for Glacier Eye Clinic.

Confidence. The feeling of winning.

Glacier Eye Clinic staff and leadership now worry less about their cybersecurity issues and compliance risks. They know the chance of a breach is now much lower and have clear plans in place to respond if a breach does occur. They know what to do if they do get compromised.

They've drilled, their staff is properly trained, and they have a strong team ready to go at any given moment. They're rightfully confident about their business resilience and cybersecurity stance.

Excellent, knowledgeable, personable. We highly recommend Adversis!

Michelle G.
^CEO

Return on Investment

HIPAA fines for security gaps and not considering your risks could cost  some percentage of revenue in the six figure range. Hiring a competent full time information security director starts in the mid $150,000s.

A similar sized organization could expect to pay around $12 to $20 thousand for a HIPAA risk assessment bringing focus and what matters.

Fractional cybersecurity advisory services for a similar sized organization typical cost $40 to $60 thousand per year depending on business needs.