These are items that represent our thinking on cybersecurity and dictate the approach we take with our customers.
- Risk for protecting your healthcare organization should be on Vijilant and not you. For too many years the customer has taken the majority of the risk with very little exposure by the vendor or service provider. We make it cheap, comprehensive, and you pay monthly. Cancel when you want. No risk (or very little).
- Our instant-on comprehensive service starts to protect your practice portfolio almost immediately and morphs as the threat landscape changes or better technical solutions come available.
- The idea of an impenetrable digital barrier around your business is fantasy. If you have not already been penetrated (probable) you will be. Strong resistance is a realistic and achievable goal for penetration.
- It is more important to detect a penetration or breach than hold on to the notion of keeping bad guys out.
- How you recover from a breach or penetration dictates the extent of the damage associated with that breach.
- Methodology is more important than hardware or software. Tools collect and interpret data, but methodology provides the conceptual model. The model must drive tool selection. Tools should not drive the model.
- Cybersecurity is a perpetual proposition. You are never done and the threat landscape changes hourly. From a budgeting perspective, cybersecurity expense should be thought of in the same way as taxes, utilities, rent and insurance.
- Insider threats are more dangerous than threats from outsiders and harder to detect.
- The small and medium-sized healthcare organization is, perhaps, the most underserved segment of the cybersecurity market.
- Leverage standards, best practices and the work of NIST, HHS, Department of Homeland Security (DHS), DISA and other regulatory and advisory groups to reduce service delivery costs and increase repeatability of successful cybersecurity improvements.