OVERVIEW
Expanding infrastructure requires smart security strategy
Penn State Health’s rapid growth includes the acquisition of new facilities and clinics. To protect this expanding infrastructure from security threats, the provider’s security operations center embraces a mix of best practices, effective tools and a strategic partnership with Mandiant.
METRICS
Fast
Access to and analysis of alerts for more effective threat response
24x7
Security monitoring, detection and response without adding full-time SOC employees
Top
Industry insights gained from in-depth, up-to-the-minute threat intelligence
CHALLENGE
Healthcare system prioritizes protection of data, intellectual property
As a leading regional healthcare provider, Penn State Health is dedicated to the health and well-being of its patients. The organization must not only protect the integrity of its infrastructure and data from malware and malicious cyber actors, including attacks perpetrated via phishing campaigns and ransomware—it must also meet HIPAA requirements.
Penn State Health is a complex organization with operations spanning hospitals, outpatient centers, clinics and the leading-edge research and education initiatives of Penn State College of Medicine. The organization is experiencing rapid growth, which multiplies its security challenges. Each acquisition brings a unique set of legacy systems and software, and it takes time to replace these with the health system’s standardized, enterprise architecture.
“We know what could happen if our networks were compromised. We know how severely it could impact operations and our ability to treat and protect our patients. That’s what keeps us up at night.”
—Cyber Operations leader, Penn State Health
SOLUTION
Growing team drives security strategy
Penn State Health’s security operations center (SOC), operating through a shared services model, deploys and manages a comprehensive suite of tools and security experts to safeguard the enterprise.
The SOC team, which has increased in size since its inception around five years ago, adopted the Mandiant Advantage SaaS platform, along with its Threat Intelligence and Security Validation modules to support their security efforts.
Mandiant Advantage Security Validation optimizes the investments made by Penn State Health in security technologies by testing the efficacy of their security controls and ensuring that events are receiving the appropriate response. Mandiant provides a force multiplier by arming the team with relevant and authentic threat intelligence and enabling the team to use this intelligence to test their security controls across people, technologies, and processes.
Mandiant services further augment and optimize SOC operations. Mandiant Managed Defense experts provide continuous 24/7 Level 2 defensive cyber operation services and response.
Mandiant Advantage Threat Intelligence deepens Penn State Health’s understanding of threat actors, malware families and the tactics, techniques and procedures (TTPs) used in targeting the healthcare industry. All this further enables the SOC team to more efficiently allocate and use its time, resources and skills.
“Partnering with Mandiant augments our centralized security operations, provides awareness to the relevant threats, identifies gaps in security and bolsters our ability to protect critical systems and patient and employee data. The partnership helps us drive continuous improvements in proactive intrusion prevention, detection, and response.”
—Matthew Snyder, Senior Vice President, Chief Information Security and Privacy Officer, Penn State Health
RESULTS
Easy-to-consume data speeds analysis, response
Mandiant Advantage Security Validation optimizes the investments made by Penn State Health in security technologies by testing the efficacy of their security controls and ensuring that events are receiving the appropriate response. Mandiant provides a force multiplier by arming the team with relevant and authentic threat intelligence and enabling the team to use this intelligence to test their security controls across people, technologies, and processes.
Mandiant services further augment and optimize SOC operations. Mandiant Managed Defense experts provide continuous 24/7 Level 2 defensive cyber operation services and response.
Mandiant Advantage Threat Intelligence deepens Penn State Health’s understanding of threat actors, malware families and the tactics, techniques and procedures (TTPs) used in targeting the healthcare industry. All this further enables the SOC team to more efficiently allocate and use its time, resources and skills.
Because the on-premises Mandiant Security Validation portal presents information in an easy-to-consume format, the team can more quickly identify and analyze threats, and disseminate critical alerts to Penn State Health staff.
Using Managed Defense for off-hours security monitoring and 24/7 event investigation and response enables Penn State Health to protect its infrastructure and support the in-house SOC team with additional experts.
Mandiant Threat Intelligence equips the SOC team to perform more effective threat modeling, elevate its strategic planning and program governance and communicate its activities and priorities to Penn State Health leadership.
The ultimate beneficiaries are Penn State Health clinicians and patients. As the Penn State Health SOC improves its security strategy, it continually reduces the risk of disruption to the provider’s operations and delivery of care.
“Mandiant helps us continually improve our mission-critical cybersecurity programs, protecting our operations, our research data, and our patients.”
—Matthew Snyder, Senior Vice President, Chief Information Security and Privacy Officer, Penn State Health
MORE ABOUT THE COMPANY
Central Pennsylvania’s leading regional health provider
Penn State Health is a multi-hospital health system serving patients and communities across 29 counties in central Pennsylvania. It employs nearly 18,000 people systemwide. It shares an integrated strategic planning and operations with Penn State College of Medicine, the University’s medical school.