In this short clip, Xantrion CTO, Christian Kelly, explains how companies can obtain a strong security model when the basics are taken care of first. He’ll also share Xantrion’s approach to understanding each client’s unique security situation – identifying risks and prioritizing risk mitigation tactics. And if you’d like to dive into your company’s specific security posture, contact Xantrion, we’re here…

According to the HIPAA Security Rule, technical safeguards are “the technology and the policy and procedures for its use that protect electronic protected health information and control access to it.” Essentially, a covered entity must implement security measures that allow it to reasonably and appropriately maintain the necessary standards for protection. Moreover, a covered entity must determine which security measures and…

The Department of Health and Human Services (HHS) has proactively updated those who fall under HIPAA coverage (aka, “covered entities”). Here’s what the HHS has to say about the increase in telehealth options:  “A covered health care provider that wants to use audio or video communication technology to provide telehealth to patients during the COVID-19 nationwide public health emergency can…

The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for sensitive patient data protection. Companies that deal with protected health information (PHI) must have physical, network, and process security measures in place and follow them to ensure HIPAA Compliance. Covered entities (anyone providing treatment, payment, and operations in healthcare) and business associates (anyone who has access to patient…

Loss or theft of sensitive data can lead to legal, compliance and business consequences. Be sure to take proper precautions to securely store that data.  Most organizations generate data that, if lost, could be detrimental to business operations, reputation, financial security or competitive position. This is generally considered sensitive data, and its mishandling can lead to business or legal repercussions. …

Risk management, the process of developing a strategy for addressing risk throughout its lifecycle, normally involves four phases: risk identification, assessment, response, and monitoring and reporting. Risk management plays a critical role in helping organizations with their security posture enhancement. Taking insider incidents as an example, they are not only costly to organizations but also time-consuming to be contained. Given…

As a strategic partner for some of the world’s most sophisticated global institutional investors—such as central banks, sovereign wealth funds, pension funds, and foundations—Bridgewater Associates has long been a leader in the world of alternative asset management. The firm has achieved success through a tireless drive to understand macroeconomic trends in global economies and markets. Bridgewater uses this research to…

Multifactor authentication (MFA) is one of the best, yet often misunderstood tools that companies can use to fend off cybercriminals trying to compromise business accounts. It blocks 99.9% of account compromise attacks. It also helps thwart automated bot, phishing, and targeted attacks.  To jumpstart your learning curve, here are the answers to some frequently asked questions about MFA.  What is MFA? MFA is…

Zero Trust is a newer security model that assumes breach and verifies each request as though it originated from an uncontrolled network. Regardless of where the request originates or what resource it accesses, the Zero Trust model teaches us to “never trust, always verify.” Watch this video to learn how Microsoft 365 Business Premium can help keep your company’s sensitive…

The worldwide shift to a hybrid workplace has pushed us all to embrace ubiquitous connectivity. Those new connections have helped us become more collaborative; routinely editing and sharing documents in real-time from wherever we happen to be working. Instant messaging went from being a tool of convenience to a cornerstone of communication. People in business, operations, and technical roles became…

Securing your systems with a data driven, human-guided security approach allows your business to detect and respond to attacks more quickly and accurately. Check out this latest infographic from Microsoft, it outlines how the global network of real-time threat intelligence continues to evolve, anticipate, and stay ahead of risks while delivering on four key security pillars that ensure enterprise-grade security. Have…

Never in our lifetime has cybersecurity been more critical. Review this infographic to learn how Microsoft can make the tasks of protecting virtual machines, data storage, and cloud native services against common threats easier. With integrated security information and event management (SIEM) and extended detection and response (XDR), you get comprehensive threat protection across devices, identities, apps, email, data, and…

Attackers haven’t wasted any time capitalizing on the rapid move to hybrid work. Every day cybercriminals and nation-states alike have improved their targeting, speed, and accuracy as the world adapted to working outside the office. These changes have put “cybersecurity issues and risks” at the top of the list when it comes to worries or concerns for business decision-makers in…

The FBI recently issued an alert about a new tool that cybercriminals are using in business email compromise (BEC) scams. Find out what this new tool is and how cybercriminals are using it. In February 2022, the US Federal Bureau of Investigation (FBI) issued an alert about a new tool that cybercriminals are increasingly using to carry out business email compromise (BEC)…

Many companies use cloud apps like Microsoft 365 and Salesforce without adequately protecting the data within those apps. Learn why this is problematic and how businesses can remedy the situation. When cloud computing was first introduced, most businesses were reluctant to try the apps being offered by public cloud service providers. Companies were mainly concerned about whether their data and…

QR codes have been around for many years. While they were adopted for certain niche uses, they never did quite reach their full potential. However, in recent years, with lockdown and the drive to keep things at arms length, QR codes have become an efficient way to facilitate contactless communications, or the transfer of offers without physically handing over a…