<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=2849132&amp;fmt=gif">
Elisity Blog

Healthcare IT and Microsegmentation - a Main Line Health Case Study

Recently Elisity with the support of H-ISAC hosted a live online discussion with Aaron Weismann, CISO of Main Line Health and Marty Overman, Head of Worldwide Sales at Elisity.

Title: Microsegmentation: Why It Matters and How to Do It with No Disruption | Listen to the Replay Now

The discussion centered on Main Line Health’s desire to greatly improve its network security program to prevent ransomware or other attacks from moving laterally, east-west, across its network. The project's top guiding principle was to avoid any disruption to patient care and the change control windows and downtime of a traditional deployment.

In the discussion, you’ll hear Aaron’s overview of their journey to a microsegmentation architecture, including attempts at implementing traditional Network Access Control (NAC) controls, which included the need to hire a team of specialists, a long project rollout across all of their of locations and tens of thousands of managed and unmanaged IoT, and IoMT devices. Aaron was given the budget and encouragement by the board, who asked about microsegmentation themselves; they, too, knew there was “not much that has a better ROI.”

Listen to the replay and learn how Aaron and his team were able to:

  • Understand why microsegmentation is so critical to hospital networks and health systems as they evolve to have bio-medical devices that have telemetry
  • Deploy Elisity across 130 practices and 24 locations in less than one year
  • Achieve a “clean” network with good hygiene and improve their Configuration Management Database (CMDB)
  • Create, simulate, and test policies for devices, applications, and users before the rules were enforced without policy enforcement anxiety
  • Ensure a “dynamic” policy model allows for medical devices to travel with people across multiple facilities
  • Enhance their Armis implementation with Elisity’s two-way syncing of Armis device metadata
  • Build consensus among Doctors and Nurses as well as Network Architects, Security, Risk, Legal and Financial teams
  • Conduct a “simulated ransomware attack drill” where staff switch to pen/paper as the cover for updating core switch software
  • Lead the effort to create a regional community of healthcare organizations and run tabletop exercises to ensure best practices, uptime, and reliability in the case of adverse events.

Listen to the Replay Now

If you would like to see how Elisity can greatly accelerate your microsegmentation efforts, request a demo.

No Comments Yet

Let us know what you think