Doctors rarely make house calls any more, but that does not mean they are desk-bound. Mobile access to patient and clinical data results in much improved patient outcomes. But mobility of care givers poses new security and compliance risks, driving CIOs and CISOs to seek technology solutions that can deliver on the promise of secure mobility.
Legacy security vendors approach mobile security challenges with legacy technologies, i.e., CASB agents or MDM agents that must be deployed on each device. In the healthcare setting, such approaches have proven impossible to deploy time and again. Most care providers - physicians, nurses etc - are affiliated with multiple institutions and cannot cede control of their laptops, tablets or smartphones to any one institution by installing an IT mandated software agent as part of a CASB or MDM security solution. Even when the care provider has a single affiliation, software agents may destablize the end-point device, interfering with patient care. As a result, every healthcare institution ends up relegating agent-based security technologies to shelfware status.
Last month, we had an interesting surprise. The CIO of one of our healthcare customers was recruited to a different institution. That institution had purchased an agent-based security solution, but was unable to deploy it. Without a CASB solution, they had suffered a data breach, and hence the new CIO. The first call the new CIO made was to Bitglass- our agentless CASB had proven easy to deploy at his prior setting, a most demanding healthcare enviroment and hence a natural choice this time around. Problem solved.