About the Client

Founded in 1917, the client is one of the world’s largest association of food and nutrition professionals. They provide several products and services that are valuable resources to its 100,000 members as well as the general public. The Academy is committed to improving the nation's health and advancing the profession of dietetics through research, education and advocacy.

Business Challenge

The client needed to implement technical safeguards to protect their sensitive patient data stored in SQL Database. These were required in line with HIPAA compliance regulations meant to safeguard patient information from the risk of breach and security threats.

Silicus Solution

The client chose Silicus as its partner based on our track record of successfully delivering several HIPAA compliant applications.

Silicus implemented a series of safeguards as part of the application and database re-engineering for HIPAA compliance.

Access control

Implemented policies within the application server restricting access to security logs, reports, and other security information to only authorized personnel. This included:

  • Unique User Identification
  • Automatic Logoff that terminates a user session after a predetermined time of inactivity
  • Implemented a mechanism to encrypt and decrypt ePHI

Audit Controls

Log retention and maintenance features were implemented. Authorized users can access raw and correlated incident logs using searchable online log data. NLog logging platform was leveraged to produce and manage logs for the SQL Database.

Integrity & Authentication

Implemented automated workflows to validate client ePHI against unauthorised modifications. Procedures were put in place to verify employees before access to electronic protected health information.

All PHI related fields in the Database were encrypted to hide patient identities.

Transmission Security

Security measures were developed to guard against unauthorized access to data transmitted over the internet. Data in Transit was encrypted by implementing SSL certificates.

Technologies Used

LANGUAGE
Language

.NET, JQuery

Database
Database

SQL Server

Logging Framework
Logging Framework

Nlog

Client Benefits

HIPAA Compliance

Silicus implemented the required measures to make the application HIPAA compliant, protecting rhe client from compliance related risks.

Productivity

Every operation in the SQL DB is logged and associated with an authenticated user, ensuring no action goes unnoticed, thereby saving time and money by offloading the need for detailed, pervasive record keeping.

2700 Post Oak Blvd, Suite 1625 | Houston, TX 77056 | www.silicus.com | (866) 912-8855 | info@silicus.com

  • Houston, TX
  • Dallas, TX
  • Atlanta, GA
  • San Jose, CA
  • Pune, India

© Copyright 2016 Silicus Technologies, LLC.