Hospital patients put a lot of faith in their providers, so Health IT security breaches are some of the worst IT-related issues that can occur. A ransomware attack, for example, can cripple systems and block physicians and nurses from access to patient lab results, X-rays or even medications. Another example is patient identity theft, which can leave victims with severe financial and legal repercussions along with the hassle of having to rebuild their credit. These are just two examples of how cyberattacks on healthcare groups and patient data can be especially devastating. The good news is that hospitals can still protect themselves against attacks with the right set of cybersecurity tools.
Cybersecurity tools are continuously evolving to address the new threats out there. Long gone are the days where the only protection Health IT security required was good firewall and antivirus software on workstations and servers. Today, attacks are sophisticated and combined with social engineering, making it more difficult for IT to secure and monitor all their endpoints that include the following:
computers;
IoT devices;
medical devices;
email;
external facing servers;
cloud resources;
network devices;
wireless networks;
point-of-sale in the dining halls;
check-in kiosks;
connected HVAC systems; and
mobile devices (including personnel smartphones or tablets).
Health IT security teams should carefully consider the leading options in the marketplace and the extensive services that each can provide to protect their healthcare systems and data.
Cisco
This company had been best known for networking appliances and voice over IP, but Cisco has recently made moves into the cybersecurity space. Given Cisco's current market reach with its core networking business, the company is introducing its newer cybersecurity products to its client base. Healthcare groups can benefit from hardware, software and cybersecurity services that Cisco can offer them.
Products and services:
Cisco has far more products and services in the cybersecurity space than its competitors like Symantec and Trend Micro Inc. Some of the unique offerings include multifactor authentication, Threat Response and even cybersecurity insurance. The company is also maintaining focus by delivering healthcare-related services like HIPAA compliance.
Pricing: Requires contact with sales
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
Cisco Endpoint Security
Cisco Email Security
Cisco Cloud Security
Cisco Duo Adaptive Multi-Factor Authentication
Cisco Firepower Next-Generation Firewall
Cisco Next-Generation Intrusion Prevention System
Cisco Web Security Appliance
Cisco Security Manager
Customer type: Small, midsize, enterprise and service providers
DXC Technology
DXC Technology Co. was the result of the merger between Hewlett Packard Enterprise's Enterprise Services business (formerly Electronic Data Systems) and Computer Sciences Corp. in 2017.
Products and services:
Cybersecurity tools are continuously evolving to address the new threats out there.
DXC delivers more than just the antivirus side of computer protection. It also offers services and products across multiple areas to help protect a hospital. These include tools that can intelligently monitor activities on computers and networks to identify any abnormal behavior where malicious code may be the culprit. The company also offers monitoring, detection, incident response and remediation services, which add expert resources to hospital security programs.
Pricing: Varies based on selected products and services
Selling options: Subscriptions-based (cloud-based), on-premises based
Components and features:
24/7 monitoring and detection alerts;
intelligence endpoint activity data with threat-intelligence tracking and monitoring;
threat analysis and investigations during incident response and remediation;
Managed Endpoint Protection;
Digital Enabler Protection; and
Infrastructure and Endpoint Security.
Customer type: Midsize companies, enterprises
FireEye
Founded in 2004, FireEye Inc. is a public cybersecurity company that specializes specifically in cybersecurity, unlike other vendors like IBM or DXC.
Products and services:
FireEye combines some of their security software with artificial intelligence capabilities to help provide next-generation protections across its hardware and software products. As an example, FireEye Endpoint Security allows IT to clearly identify which endpoints need containment and can prevent further damage from an infected machine in the event of an attack. The company markets HX agents as one of their differentiators. When admins install these on different endpoints, they are able to monitor common applications like Office suite, Adobe and other common tools and block the applications if they detect any abnormal behaviors in real time that result from opening an infected file.
Pricing: Quoted based on chosen products
Selling options: Subscriptions-based (cloud-based), on-premises based
Components and features:
FireEye Network Threat Prevention Platform
FireEye Email Threat Prevention Platform
FireEye Central Management System
FireEye Dynamic Threat Intelligence
FireEye Managed Defense
FireEye Threat Analytics Platform
Customer type: Small business, enterprise
Forcepoint
Forcepoint, formerly known as Websense, is best known for its involvement in government security services, most notably with the FBI.
Products and services:
Forcepoint does provide a number of different services and products that can benefit healthcare organizations as well. Unlike other cybersecurity vendors who primarily focus on the software and services side, Forcepoint offers hardware firewalls and software-defined WAN products. Earning a security contract with the FBI is likely to continue to boost confidence for healthcare organizations in Forcepoint's ability to protect its clients.
Pricing: Requires contact with sales
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
Forcepoint Web Security
Forcepoint Secure Enterprise SD-WAN and NGFW (next-generation firewall)
Forcepoint Cloud Access Security Broker
Forcepoint Data Loss Prevention
Forcepoint Insider Threat
Forcepoint User & Entity Behavior Analytics
Customer type: Enterprises
IBM
In recent years, IBM has been touting its success in delivering AI-based services, including fraud detection and cancer detection and diagnosis, to healthcare organizations. IBM took a step further by utilizing its AI capabilities and embedding them as part of its cybersecurity products in order to provide its healthcare clients yet another intelligent line of services. This allows hospitals adopting these tools to stay current with the latest protection tools against emerging threats.
Products and services:
IBM aims to assist their customers with managing and monitoring their security instead of just delivering software. One of IBM's unique offering is its security information and event management product, which is capable of processing events from other third-party products that IT uses within a network -- Cisco devices, Windows and other systems -- and is able to detect and report abnormal activities.
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
IBM Identity and Access Management
IBM QRadar Security Intelligence Platform
IBM Security Intelligence Operations and Consulting Services
IBM Managed Security Information and Event Management
IBM QRadar Advisor with Watson
IBM QRadar User Behavior Analytics
IBM Managed Detection and Response
Customer type: Midsize, enterprise and service providers
Kaspersky Lab
Kaspersky is another vendor that has undergone some changes over the years. It was founded 20 years ago, specializing in antivirus tools, but has evolved to deliver next-generation cybersecurity tools geared specifically towards Health IT security.
Products and services:
Kaspersky Endpoint Security is still one of the core products that the company offers, but it has grown to offer security-based tools like intelligent threat detection, email protection and Network Monitor, so hospitals can take full advantage of all these security-based products.
Pricing: $1,934.99 a year for 50 endpoints
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
Kaspersky Endpoint Security
Kaspersky Threat Intelligence
Kaspersky Threat Hunting
Kaspersky Security Training
Kaspersky Incident Response
Kaspersky Security Assessment
Customer type: Small business, enterprise
McAfee
McAfee is a well-known security vendor, most popular with IT for its antivirus products. Over the years, the company has continued to grow its product base to address the newer threats, moving beyond the traditional antivirus endpoint protections.
Products and services:
McAfee offers hospitals products and services to address HIPAA compliance requirements and the protections necessary to keep systems up and operational. Starting with cloud security protections, embedded IoT security, database protections and endpoint and device security, McAfee can deliver comprehensive protections for IT with accessible tools and a centralized management console. McAfee partners with other groups like Proofpoint to provide email protection capabilities.
Pricing: Quoted based on products, but small business systems start at $109.00 for up to 10 devices
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
McAfee Total Protection
McAfeeLiveSafe
McAfee Mobile Security (for Android and iOS)
McAfee WebAdvisor
McAfee Safe Connect
McAfee MVision Cloud
McAfee MVision Endpoint Detection and Response
McAfee Endpoint Protection
McAfee ePolicy Orchestrator
Customer type: Small business, enterprise
Palo Alto Networks
Palo Alto Networks Inc. once focused exclusively on delivering network appliance protections, but it have since evolved to cover other threats at the endpoint level in order to stay relevant for its client base.
Products and services:
The company focuses on proactively blocking external threats from the web or outside networks. This approach provides the company with an advantage of addressing potential threats before they reach users by blocking phishing and known malicious sites at the firewall level. Palo Alto is also adding endpoint protection to its portfolio along with its flagship network products to address the new malware and ransomware threats attacking its clients' devices. One of its biggest appeals is its zone-based segmentation, which allows health IT security to isolate any of the medical devices that require isolation and protection from other devices on the network.
Pricing: Requires contact with sales
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
next-generation firewall
threat prevention
endpoint protection
5G security/IoT
WildFire malware analysis
Customer type: Small, midsize, enterprise
Symantec
Symantec continues to adjust along with the changes in the marketplace even considering that Norton Antivirus has been around for more than 10 years.
Products and services:
Symantec is taking a unique approach when it comes to dealing with its healthcare clients. Starting with the existing NIST Cybersecurity Framework for Healthcare, the company is using the defined framework to ensure that its healthcare clients can pick the necessary protection for what they specifically need.
Pricing: Requires contact with sales
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
Symantec Control Compliance Suite
Symantec Data Loss Prevention & Protection
Symantec Advanced Threat Protection
Symantec IoT Security
Symantec Office 365 Security and Compliance
Zero Trust security
Symantec DeepSight Intelligence Portal
Customer type: Small companies, midsize companies, enterprises
Trend Micro
Trend Micro, along with its flagship end-user protection product, has expanded their focus to include more coverage across a number of fronts. With this expansion into network protections and security services for monitoring and remediation, Trend Micro is encouraging healthcare groups to consider them for more than just antivirus.
Products and services:
Trend Micro focuses on four core areas of cybersecurity: cloud security, network defense, user protection and enterprise support services. One of the unique offerings of Trend Micro is web filtering, which helps to prevent access to malicious websites for hospital end users.
Pricing: Requires contact with sales (small business and personal use Maximum Security suite starts at $89.95 per device, per year)
Selling options: Subscriptions-based (cloud-based), on-premises based
Components:
Trend Micro Deep Security Automation Center
Trend Micro Smart Protection Network
Trend Micro Internet Security
Trend Micro Secure Web Gateway
Trend Micro Deep Security for the Hybrid Cloud
Trend Micro Intrusion Prevention
Trend Micro Advanced Threat Detection by Deep Discovery
Trend Micro User Protection Solutions
Trend Micro Enterprise Support Services
Customer type: Home users, small business and enterprise
As hospitals continue to expand their adoption of technology, cyberattacks will continue to develop new attack methods. While there are no guarantees that any vendor can completely block or prevent data breaches and attacks, IT must select security systems that can protect their systems across email, network, endpoint, IoT and almost anything that can be a potential target of cybercriminals.
Editor's note:With extensive research into the cybersecurity market, TechTarget editors have focused this series of articles on vendors with considerable market presence that offer security platforms targeted for healthcare organizations. Our research included Gartner, Forrester Research and TechTarget surveys.