HIPAA/HITRUST Security Containers in Microsoft AZURE

July 13, 2017

Ashley_LRG_HIPAAGetting and maintaining HIPAA/HITRUST security compliance is at the forefront of the Healthcare industry’s migration from on-premises solutions into the cloud.  Non-compliance can mean criminal and civil penalties reaching upwards of $1.5 Million per incident, per year. Eliminating the risk of exposing ePHI (electronic Protected Health Information) in the cloud with HIPAA/HITRUST Azure Security Containers also eliminates the risk of such penalties.

Project Hosts is a leader in Azure, with more than a decade of expertise in Healthcare security standards and control methodologies. We’re enabling Healthcare providers to move their on-premises apps and workloads into the cloud with full compliance, quickly, cleanly and affordably –  through our Complete Migration Process and Managed Security Services.

scott-chapman

Project Hosts’ CISO, Scott Chapman

 

For a limited time, Project Hosts is offering a one-hour conversation with Project Hosts’ CISO, Scott Chapman, to help healthcare professionals identify potential gas in their current cloud migration and security plans.

You can register here, or contact Project Hosts via email (info@projecthosts.com) to set up your free consultation today.

 


Compliant (ISO 27001, FedRAMP DoD I/L 4, HIPAA/HITRUST, NIST 800-53) CSP offers Azure Security Management

June 30, 2017

amanda_brent_david_sign_cspAzure takes care of the physical security of their data centers as well as access control and the security surrounding physical devices. But Azure leaves it up to each customer to secure and restrict access to their own virtual servers/subnets, database and web applications. Managing a secure standards-compliant Azure environment requires an IT staff to continuously monitor alerts and threats while managing updates and patches with minimal downtime. These are just a few of the tasks in managing a truly secure Azure environment.

Logging configuration, collection, alerting and reviews are daunting tasks that can take up most of your teams time, or it could all be left to a security compliant CSP who can also handle your OS, DB and application software vulnerability scanning and patching. Project Hosts offers centralized inventory tracking and an alerting system incident response system with periodic testing. Please visit ProjectHosts.com for a complete list of the managed services Project Hosts offers.

Whether your are in healthcare, government or the private sector, your Azure environment can be managed with the proper compliance through Project Hosts.

  • Security: Choose the industry security standard that best suits your business needs and data criticality including ISO 27001, NIST 800-53 and FedRAMP and FedRAMP DoD I/L 4.
  • Integration: With our intelligent cloud integration services, your users will be able to access and navigate seamlessly between multiple cloud service infrastructure, including Azure-based deployments.
  • Support: Backed by our renowned Person-2-Person admin support services and uptime guarantee, our Cloud-Ops managed services will take your business operations to the next level of productivity without breaking the bank.

FedRAMP Websites made Secure through Required FedRAMP Control Families

June 22, 2017

FedRAMP-Websites2Pursuant to a memorandum released in November, 2016 by the US Office of Management and Budget, M-17-06 Policies for Federal Agency Public Websites and Digital Services, Project Hosts’ FedRAMP compliant websites can meet website objectives and recommendations. U.S. federal and state government agencies and enterprise organizations that need a highly secure website and content management system can now use Drupal, Joomla and WordPress for FedRAMP compliant websites with database.

Vulnerability scans, expensive audits and access control are at the forefront of the RA, AU and AC Control Families, which along with 253 additional controls, give Federal and State agencies and their citizens peace of mind when accessing and sharing information over their FedRAMP websites. Project Hosts, Inc. has put together a series of videos going over the various control families necessary to achieve FedRAMP compliance. While some of the control families are industry standard for IT security management, it is the substantial number of controls required in FedRAMP that adds the impenetrable layers of security through FedRAMP Compliance.

FedRAMP_Video_SeriesThe RA- Risk Assessment FedRAMP Security Control Family is primarily about vulnerability scanning on your system.

The AU – Audit and Accountability FedRAMP Security Control Family covers the logging that you must do in you systems to be able to alert you when something is going wrong, or to diagnose incidents. Such audits can cost upwards of $200k annually.

The AC- Access FedRAMP Security Control Family is the largest family with 43 controls. This family of controls covers how you provide control over who accesses your environment and how you authorize that access.

Click here for more information about FedRAMP SaaS Compliant Solutions.

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services


Trump Signs Executive Order that Infuses More Cash into Apprenticeship Programs in the United States

June 16, 2017

69b82086810047f6ae3f6619ebe3ee2dOn Thursday, June 15 2017, President Donald J. Trump signed an executive order in the Roosevelt Room of the White House, during an event on Apprenticeship and Workforce of Tomorrow initiative. The order calls for more money and a greater private company role in developing apprenticeship programs meant to fill over 6 million open jobs in the United States.

Steve_LTI_OnRAMP-WebApprenticeships used to be much more common in the United States than they are today; helping train young workers for jobs in a wide range of fields. Today, there are far more job opportunities in technology than there are qualified workers. And that is one of the reasons Project Hosts, Inc, started an “OnRamp Program for Cloud Service Engineers”. Approximately six years ago, Scott Chapman and James Flavin, Co-founders of Project Hosts, Inc. found that they had far more work than they had employees. Instead of leaving Conneautville PA, a small town west of Meadville Pa, for a larger city with a deeper talent pool, the company reached out to the Laurel Technical Institute (LTI) in Meadville, that had launched a IT degree program and began their OnRAMP Program. “It’s worth the investment for us to take people who really wanted to be in that area and learn the skill set. It’s worked out very well for us.” – Scott Chapman, CEO and Co-Founder of Project Hosts in a recent Pittsburgh Post-Gazette Article

Project Hosts, Inc. offers the Cloud Service Engineer Apprentice Program for students attending 2-year and 4-year colleges in the western PA region. This program offers the candidate FULLY PAID Microsoft training, testing and certifications as well as a chance at full-time employment after the 90 day program has concluded. The goal of this program is to enable Project Hosts to meet staffing demands for custom cloud-based Microsoft solutions, Azure based application hosting and security compliant cloud solutions by training students in the western PA region.

 

 


Are Major Cyber Breaches Inevitable in Healthcare?

June 8, 2017

CyberThreat_GraphicIn an IBM Sponsored survey, the Ponemon Institute’s study found that most organizations surveyed report having had a major breach, making it all but expected that eventually having a cyber incident is a sure thing. The cost of a major cyber incident can cause significant disruption, loss of business as well as significant monetary loss.

While it is expected that hackers will continue to target healthcare networks and systems, there are various steps companies in the industry are taking to improve their cyber security. Today, more Hospitals and Healthcare providers are moving into the cloud. According to Paul Butler at Top Tier Consulting, “In ten years, I think the data centers will be mostly in the cloud”. The cloud is more cost effective and secure with the added convenience of HIPAA Compliant Cloud Service Providers or CSPs.

PrintCompliant CSPs are cloud security experts that ensure your deployment’s compliance with the most rigorous cloud security standards: ISO 27001, HIPAA/HITRUST , FedRAMP moderate and High and FedRAMP DoD CC SRG IL4/5. These clouds are subject to annual penetration testing and certified auditor assessments, removing cyber incidents from your list of concerns.

HIPAA/HITRUST Compliant Clouds

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services

 


Get and Maintain Compliance with the ISMSCloud

June 1, 2017

ISMSCLoud_Graphic_jumpThe ISMScloud Service was created by Project Hosts, Inc., a recognized leader in secure cloud services and hosting of HIPAA / HITRUST, ISO 27001 and FedRAMP SaaS compliant deployments on Azure. To help other companies secure their information management system and achieve their security certification, we’ve taken our knowledge and expertise and created an online service to simplify, speed and essentially ensure that you’ll pass the certification process just as we have.

With the ISMScloud you’ll find it easier to get, and continue to maintain your HIPAA, NIST 800-66, HITRUST, FedRAMP, or ISO 27001 certification. The system provides baseline security controls, and helps you manage all of the controls, implementation write-ups, internal audits, security findings and fixes. ISVs, government agencies, hosting companies, IT departments in healthcare and financial institutions will find that far less time and resources will be spent on the process with this single, easy to use, organized repository.

To learn more visit www.ismscloud.com   For special offers or demonstrations: contact info@ismscloud.com

 


Azure Security Containers for Healthcare

May 24, 2017

container-registryProject Hosts is a Microsoft Cloud Solution Provider that manages the application-level HIPAA / HiTRUST / NIST 800-66 security controls that must be in place for healthcare companies to move their Windows and Linux Deployments into a secure Microsoft Azure Container.  Our Microsoft Azure Security Container and Managed Services include ongoing scanning, patching, log reviews, alerting, incident response, backup, DR tests, user authorization tracking, data loss prevention and more for customer developed, or ISV-based applications.

Project Hosts’ cloud security experts ensure that all HIPAA / HITRUST / NIST 800-66 security controls are implemented and documented for your deployment. Deployments are subjected to annual penetration testing and certified auditor assessments. Whether custom developed, or obtained from an independent software vendor (ISV), your software will be fully scanned, logged, and penetration tested to meet compliance standards when migrated to Azure.

Ashley_LRG_HIPAAHealthcare Client Value:

Enable you to move on-premises Windows and Linux apps into a HIPAA / HiTRUST / NIST 800-66 compliant Azure cloud quickly and cost-effectively.

Leverage our expertise in Healthcare security standards and security control methodologies to get, and maintain your certification and compliance.

Reduce your IT services and support workloads while delivering more integrated cloud offerings.

Enable you to leverage your existing on-premises software solutions into the cloud, without starting over.

Ensure the overall success and adoption of your cloud with ongoing management, monitoring, support and optimization.

Secure Azure Services

Secure SharePoint on Azure

Remote SharePoint Administrator

Azure Managed Services

 

 


%d bloggers like this: