Rapid7 Case Studies Prairie North Regional Health Authority Uses Automated Security Reporting to Free Up Resources

Edit This Case Study Record

	Prairie North Regional Health Authority Uses Automated Security Reporting to Free Up Resources Rapid7

Prairie North Regional Health Authority Uses Automated Security Reporting to Free Up Resources

Rapid7

Technology Category	Analytics & Modeling - Predictive Analytics Application Infrastructure & Middleware - Data Exchange & Integration Cybersecurity & Privacy - Security Compliance
Applicable Industries	Healthcare & Hospitals
Applicable Functions	Business Operation Facility Management
Use Cases	Predictive Maintenance Remote Asset Management
Services	Software Design & Engineering Services System Integration
Challenge	PNRHA needed to enhance its security posture to comply with Saskatchewan’s Health Information Protection Act (HIPA) and prepare for a province-wide security push. The organization lacked visibility into its security status and had no reporting or charting capabilities to demonstrate compliance. With over 100 servers, 2,500 employees, 1,500 desktops, and two major data centers, PNRHA faced significant challenges in managing and securing its extensive IT infrastructure. The security team, led by Senior Security Analyst Jarvis Meier, needed a solution that could scale with the organization’s growth and provide comprehensive security management. Read More
About Customer	Prairie North Regional Health Authority (PNRHA) is a healthcare organization based in Saskatchewan, Canada. It serves a large region with a diverse population, providing a wide range of healthcare services. The organization employs approximately 2,500 people and operates more than 100 servers, 1,500 desktops, and two major data centers located in different cities. PNRHA is committed to maintaining high standards of security and compliance, particularly in relation to the Health Information Protection Act (HIPA), which mirrors the HITECH and HIPAA regulations in the United States. The organization’s security team, led by Senior Security Analyst Jarvis Meier, is focused on safeguarding sensitive health information and ensuring the integrity of its IT infrastructure. Read More
Solution	PNRHA implemented Rapid7’s Nexpose Enterprise Edition to address its security challenges. The solution provided automated reporting and scanning capabilities, which were crucial for maintaining compliance and improving security posture. Nexpose’s integration with VMware vSphere allowed PNRHA to leverage existing infrastructure and streamline security operations. The automated reporting features enabled the security team to conduct regular scans and generate reports that highlighted the most vulnerable assets. This targeted approach allowed the team to focus on the highest priority vulnerabilities, significantly improving efficiency. Additionally, the scalability of Nexpose ensured that it could grow with PNRHA’s expanding security and IT requirements, providing continuous support without the need for additional modules or features. Read More Log in to view content
Contents

Technology Category

Analytics & Modeling - Predictive Analytics

Application Infrastructure & Middleware - Data Exchange & Integration

Cybersecurity & Privacy - Security Compliance

Applicable Industries

Healthcare & Hospitals

Applicable Functions

Business Operation

Facility Management

Use Cases

Predictive Maintenance

Remote Asset Management

Services

Software Design & Engineering Services

System Integration

Challenge

PNRHA needed to enhance its security posture to comply with Saskatchewan’s Health Information Protection Act (HIPA) and prepare for a province-wide security push. The organization lacked visibility into its security status and had no reporting or charting capabilities to demonstrate compliance. With over 100 servers, 2,500 employees, 1,500 desktops, and two major data centers, PNRHA faced significant challenges in managing and securing its extensive IT infrastructure. The security team, led by Senior Security Analyst Jarvis Meier, needed a solution that could scale with the organization’s growth and provide comprehensive security management.

About Customer

Prairie North Regional Health Authority (PNRHA) is a healthcare organization based in Saskatchewan, Canada. It serves a large region with a diverse population, providing a wide range of healthcare services. The organization employs approximately 2,500 people and operates more than 100 servers, 1,500 desktops, and two major data centers located in different cities. PNRHA is committed to maintaining high standards of security and compliance, particularly in relation to the Health Information Protection Act (HIPA), which mirrors the HITECH and HIPAA regulations in the United States. The organization’s security team, led by Senior Security Analyst Jarvis Meier, is focused on safeguarding sensitive health information and ensuring the integrity of its IT infrastructure.

Solution

PNRHA implemented Rapid7’s Nexpose Enterprise Edition to address its security challenges. The solution provided automated reporting and scanning capabilities, which were crucial for maintaining compliance and improving security posture. Nexpose’s integration with VMware vSphere allowed PNRHA to leverage existing infrastructure and streamline security operations. The automated reporting features enabled the security team to conduct regular scans and generate reports that highlighted the most vulnerable assets. This targeted approach allowed the team to focus on the highest priority vulnerabilities, significantly improving efficiency. Additionally, the scalability of Nexpose ensured that it could grow with PNRHA’s expanding security and IT requirements, providing continuous support without the need for additional modules or features.

Impact #1	The implementation of Nexpose led to significant improvements in PNRHA’s security operations. The automated reporting and scanning capabilities allowed the security team to conduct regular assessments and track progress effectively. The Top 10 Riskiest Assets report enabled the team to focus on the most critical vulnerabilities, reducing the need for blanket patching and saving valuable time and resources. The integration with VMware vSphere facilitated seamless operations and enhanced the overall security posture. The targeted approach to vulnerability management resulted in substantial cost savings, as the team could address the most pressing issues without extensive overtime work. The overall efficiency of the security operations improved, freeing up resources to focus on other critical tasks.

Impact #1

The implementation of Nexpose led to significant improvements in PNRHA’s security operations. The automated reporting and scanning capabilities allowed the security team to conduct regular assessments and track progress effectively. The Top 10 Riskiest Assets report enabled the team to focus on the most critical vulnerabilities, reducing the need for blanket patching and saving valuable time and resources. The integration with VMware vSphere facilitated seamless operations and enhanced the overall security posture. The targeted approach to vulnerability management resulted in substantial cost savings, as the team could address the most pressing issues without extensive overtime work. The overall efficiency of the security operations improved, freeing up resources to focus on other critical tasks.

Benefit #1	25% decrease in vulnerabilities over a 3-month period using the Top Remediation Report.
Benefit #2	Reduction in overtime costs, with the ability to complete tasks with fewer personnel in less time.

Benefit #1

25% decrease in vulnerabilities over a 3-month period using the Top Remediation Report.

Benefit #2

Reduction in overtime costs, with the ability to complete tasks with fewer personnel in less time.

Download PDF Version

Overview

Prairie North Regional Health Authority Uses Automated Security Reporting to Free Up Resources

Operational Impact

Quantitative Benefit