Standard backup procedures, even the most refined ones, may be insufficient when it comes to the challenges associated with managing medical data.
Standard Practice: A backup is encrypted and stored on an external medium.
Challenge: After over 15 years of close collaboration on securing medical entity data, we know that a comprehensive backup should also analyze file contents, their compliance with security policies, and the recoverability of the data contained within them.
We call this Backup+.
As part of developing backup policies, we implement the UnitScore software, which aims to:
- Verify the correctness and quality of the backup
- Monitor the schedule
- Support the recovery process
- Ensure compliance with security policies
- Provide an encrypted and ransomware-resistant off-site backup (3-2-1 procedure)
- Manage data retention with GFS (Grandfather, Father, Son) scheme
UnitScore, with the help of a specialized module (DLP), analyzes the contents of files that go into the backup. It works similarly to antivirus software, but instead of detecting malicious software, it identifies and marks sensitive data. It searches for, for example, medical data (e.g., prescriptions, personal identification numbers, addresses) and compares it with data allowed within the workstation. Detection of medical data, such as a PDF of a prescription on the desktop, will notify the user of the situation and, according to the policy, may encrypt the file after a specified time, delete it, or move it to an encrypted archive.
UnitScore provides a graphical presentation of the security status of various system components and configurations. It determines the level of resilience of individual areas and devices to cybersecurity threats, data loss, and failures. UnitScore is updated daily, ensuring a range of automated actions based on audit controls and continuous recommendations for improving security levels.
We support backup tools from leading manufacturers as well as open-source solutions. We can adapt to existing infrastructure and solutions that are already implemented. We can also develop a new strategy, prepare server infrastructure, and implement the full range of the OnSecure platform at any stage.