August 25, 2023
How Bedroc helped a large, nationwide healthcare company augment its staff and complete a vital certification process.
IT Security in Healthcare
In the healthcare industry, ensuring the security of IT infrastructure is mission-critical. Patients expect their personal and medical information to be kept secure, and a breach of confidential data can have devastating consequences on patient trust, confidence, and well-being. For healthcare companies affected by data intrusions, costs can easily top $10 million dollars per breach, according to one study.
At Bedroc, we’re in the business of providing peace of mind. With our national focus, we deliver staffing resources that enable all clients — including those in the healthcare industry — to create and maintain IT environments that are robust, secure, and compliant with industry standards and regulations.
In the following case study, we shed light on how we helped a nationwide healthcare company augment its staff and complete a vital certification process that is integral to building trust in our healthcare system.
— $10.10M Average total cost of a data breach in the healthcare industry¹ —¹IBM Cost of a Data Breach 2022 Report
The healthcare industry has some of the most rigorous standards in place for safeguarding data. In the U.S., healthcare practitioners are governed by the Health Insurance Portability and Accountability Act (HIPAA), which is focused on maintaining the confidentiality, integrity, and availability of electronic health information. Although there are many routes to HIPAA compliance, more than 80% of US hospitals, 85% of US health insurers, and many other covered entities and business associates leverage the HITRUST Approach — an integrated set of standards and practices that help organizations achieve their security and privacy goals.
Seeking to create trust through HITRUST certification, a large, nationwide healthcare organization reached out to Bedroc. They recognized that their ability to deliver a successful certification was incumbent on having a skilled, technical writer with experience documenting a commitment to IT security within the complex HITRUST environment. Simply put, they didn’t have the capacity — or the internal qualifications — to document a HITRUST certification on their own.
Bedroc’s connections run deep. As a trusted partner in strategic resourcing, we’ve built a pipeline of highly-skilled candidates who are ready to step into virtually any IT role, supplementing an organization’s team for short- or long-term engagements.
In this case, Bedroc delivered and onboarded a qualified candidate within one week of the beginning of our engagement. He brought more than 20 years of experience to the task, including leadership of two previous HITRUST engagements, and his expertise in creative governance, risk management, and compliance training modules proved to be exactly what the project needed. Leveraging one person with multiple skills, rather than an entire team, saved our client money and ensured that the project was completed on time and within budget.
Going forward, the client now has documentation of processes and procedures that will enable their business to grow and expand. Together, we forged a new path of governance and risk management related to IT compliance projects, which promises to deliver real benefits long after the project is completed.