Our customer works with sensitive healthcare data, so they have to protect it according to their corporate cybersecurity policies as well as local and industry requirements.
To do this, AGEL needed an advanced cybersecurity solution that would enable them to:
1. Establish reliable oversight of healthcare data
2. Audit administrators’ activity
3. Manage access of privileged users
4. Maintain a convenient multi-tenant infrastructure
Since insider threats are one of the major dangers for health-related data security, AGEL needed to monitor user actions with health-related data and manage access to it.
Particularly, they wanted to be able to pay close attention to privileged users: in-house administrators and third-party suppliers. Additionally, AGEL has a complex infrastructure where a large number of IT administrators perform cross-system operations.Although each AGEL facility is partially independent in terms of IT administration, information security management for all facilities is covered by headquarters. That’s why AGEL needed a solution that could be deployed with zero changes to existing system management procedures.
After evaluating several options, the customer decided to go with Ekran System, provided by DATASYS, our representative in the Czech Republic.
AGEL Group is a leading healthcare provider in Central Europe with representation in the Czech Republic and Slovakia. In the Czech Republic alone, AGEL operates 12 hospitals along with a network of polyclinics, pharmacies, laboratories, distribution companies, and
other specialized medical facilities.
Our customer successfully enhanced the security of sensitive data with no changes in system management procedures. They implemented Ekran System directly on critical endpoints, where it allows them to:
• See who does what with sensitive data
• Respond to insider threats in real time
• Know how privileged users handle sensitive data
• Limit admin access to a particular facility
• Manage server configurations separately for each facility
• Gather and process monitoring data from all facilities in one place
The [Ekran System] solution from DATASYS helped us gain full control over the activities of privileged users of third-party employees on selected servers and terminals of the AGEL Group.
Cyber Security Manager, AGEL a.s.
HOW WE DID IT
With Ekran System, AGEL can successfully protect sensitive data from insider threats and ensure compliance with healthcare and cybersecurity requirements. To achieve such results, our customer leveraged the following functionalities:
Monitoring of user actions with sensitive data. To make sure sensitive data is safe and sound, our customer relies on Ekran System’s comprehensive monitoring of ongoing user sessions. AGEL also implemented Ekran System’s secondary authentication feature to distinguish the actions of users working under a shared account.
Alerts and notifications on suspicious activity. With Ekran System, AGEL can automatically or manually block a user or stop their session if they perform suspicious actions.
Searchable records of user sessions. AGEL now can search for security incident records across indexed metadata of saved sessions and screenshots. Ekran System provides security officers with a detailed log of privileged user activity on protected endpoints. Security teams can see the full context of suspicious events and understand the intent behind a user’s actions.
Exportable reports on user activity. To ensure robust cybersecurity, it’s essential to conduct regular audits of administrator actions with sensitive data. With Ekran System’s advanced reporting capabilities, AGEL can generate detailed reports, both on schedule and on demand. And with the ability to export these reports in a tamper-proof format, our customer can
efficiently audit and investigate any cybersecurity event.
Granular remote desktop (RDP) access control via terminal server. Using Ekran System’s session management and monitoring capabilities, our customer can now establish secure access to critical servers for specific users and monitor all their actions in real time.
Floating licensing scheme. Our customer can easily and quickly reassign Ekran System licenses to individual organizational units according to current needs. Thus, AGEL can maintain a financially efficient cybersecurity model while properly securing the most critical endpoints.
Multi-tenant mode. Ekran System helped our customer ensure that privileged users only have access to servers of their facilities. Also, the customer doesn’t have to worry about local admins disabling user activity monitoring, as this is impossible in Ekran System.
Integration with log management (LM) and SIEM systems. Our customer significantly enhanced data protection with no changes to their system management procedures. Thanks to Ekran System’s ability to integrate with popular LM and SIEM systems, AGEL smoothly
implemented our platform in their cybersecurity framework and established centralized data management.