Executive Summary
Heritage Valley Health System (HVHS) is an integrated delivery network providing health care for residents throughout Western Pennsylvania, Eastern Ohio, and the panhandle of West Virginia. In addition to several national care quality awards, the College of Healthcare Information Management Executives recognized HVHS as one of the ‘Most Digitally Wired’ health systems. After a disruptive NotPetya cyberattack in 2017, HVHS recognized a need for detailed clinical device data as a part of their cybersecurity infrastructure modernization strategy.
After selecting Claroty, which is hosted on Amazon Web Services (AWS), HVHS leadership recognized the value of accurate clinical device details. Armed with comprehensive knowledge of connected assets across all three hospital facilities, they found that HVHS could eliminate several outdated security and asset management routines. Additional integrations to Endpoint Detection/Response (EDR), Vulnerability Management (VM), Network Access Control (NAC), and Firewalls dramatically improved their overall security posture.
Challenges
Device data were incomplete, siloed, and largely outdated, with no validation mechanisms in place.
VM tools could not distinguish medical and non-medical assets.
Inefficient troubleshooting, as stakeholders lacked a common data set about the asset in question.
Solution
After a thorough evaluation, Heritage Valley Health System selected Claroty as their Healthcare IoT security partner. They deployed Claroty's Core Visibility, Insights, and Anomaly Detection platform and enabled the Clinical Cyber Hygiene, Network Policy Management, and Clinical Device Efficiency modules.
Claroty enabled notification of known CVE’s and recalls.
Integration with VM tools enabled clinical context information for endpoint scanning.
NAC integration allowed for dynamic device segmentation policies.
Up-to-date assset inventories allowed for data-driven device procurement.
Results
After a negative cyberattack experience, HVHS mounted an effective response, and their security ecosystem is now considered market-leading. Today, CISO-led security decisions are enablers of value-based care.
Vulnerability identification and real-time alerts initiate remediation workflows.
EDR and VM platforms enrich asset data and further refine device risk scoring.
Knowledge of device attributes, security posture, and network status improve overall productivity.
Asset utilization data improves supplier negotiations, maintenance, and capital planning processes.
And with Claroty being hosted on AWS, Heritage Valley Health System also leverages AWS Services providing the inherent scalability of AWS, encrypted connections between on-premise networks and AWS, along with the ease of integration into the AWS landscape.
