Healthcare Privacy Monitoring

Privacy and security are some of the biggest challenges facing the healthcare industry. Clinics, hospitals, and other healthcare facilities have dozens of users with access to sensitive patient information. This high volume increases the risk of unauthorized access to patient health information. Patient Privacy Monitoring Solutions built on the Splunk platform can help secure patient data held in electronic health records, clinical applications, as well as cloud and big data applications.

Splunk Healthcare Privacy Monitoring Solution is a patient privacy intelligence platform that captures, indexes, and correlates real-time data to monitor access to patient records across multiple healthcare systems and applications to ensure patient privacy and compliance. The platform can handle vast amounts of structured and unstructured data from various sources, including Epic and other application logs. When implemented, Splunk-based solutions help reduce the risk of snooping, identity theft, and insider threats. Splunk gives healthcare organizations the power to detect, investigate, and re-mediate unauthorized access to patient health information.

Sigbay is the developer and the preferred deployment partner of the Splunk Healthcare Privacy Monitoring Solution. The technology consulting company specializes in the end-to-end scoping, implementation, and delivery of Splunk applications and visualizations. Sigbay boasts extensive experience in the deployment of specialized applications with an impressive list of clientele that includes Cedars Sinai, NYP, Weill Cornell Medicine, and Columbia Doctors among others.

A Flexible Patient Privacy Monitoring Solution

One of the best features of the Splunk Healthcare Privacy Monitoring Solution is that it can be customized to your needs as a customer – it doesn’t have to be deployed as is. The ability to customize the solution allows healthcare organizations, large or small, to monitor user access and track the pulse of activities in the organization by identifying trends and isolating suspicious access. Privacy and security officers in these healthcare organizations can, in turn, effectively protect PHI when patient privacy is at stake.

Use Cases

The benefits of using Splunk Healthcare Privacy Monitoring Solution are many and can be integral to averting breaches and surviving OCR Audits. This solution can help you identify snooping, which is an ever-present risk when it comes to patient health records in a healthcare organization. More often, snooping increases the risk of HIPAA violations which can be costly to an organization. In addition to that, the solution can help you root out insider threats and detect potentially criminal behavior originating from within or without your organization. Here are some of the common use cases of the solution:

  • Access by inactive user
  • Access outside of work hours
  • Access to Family member MRN
  • Access to Neighbour MRN
  • Access to Not-Under-Care MRN
  • Access to VIP patient
  • Access to consecutive MRNs
  • Accesses by all users to a given MRN
  • All accesses by user over a specified time
  • Break the Glass
  • Break the Glass Bumped
  • Compare Usage among Peers
  • Deceased Patient Access
  • Deceased Patient Demographic Access
  • Employee Access to Employee Patient Records
  • Excessive Demographics Access
  • Excessive Hours with Activity
  • Failed login attempts
  • Higher than user normal
  • Mismatched user login
  • User over time statistics

Alerts

Alerts are saved searches that query data in real-time or on a scheduled interval. They are triggered when the queries return outcomes that meet user-defined parameters. Whenever an alert is triggered, it can initiate one or more alert actions, for instance, sending emails to compliance or security personnel. In other words, alerts are more restrictive searches that trigger actions for some situations that require extra attention or follow up. For example, in Splunk Healthcare Privacy Monitoring Solution, you can go to the “Failed Logins” dashboard to see all users who attempted to log in but failed. However, alerts will only trigger for those users who try and fail to login repeatedly, based on predefined thresholds.

Access to VIP

Health organizations must work to ensure that patient privacy is protected. That’s where solutions such as Splunk Healthcare Privacy Monitoring Solution come in. One of the most interesting features of Splunk-based systems is Access to VIP. This feature is designed to prevent employees from accessing VIP patient health information. VIP patient health information can be added to a ‘watch list’ so that access to a patient’s records triggers an alert to specified compliance or security staff. There are two major types of alerts as far as access to VIP patient health information is concerned. These are:

  • Break the Glass Access. In this scenario, access to restricted accounts is successful. Successful access to VIP patient data requires authentication and a reason for doing so.
  • Break the Glass Bumped. Bump the Glass refers to unsuccessful access to restricted accounts. This alert will be sent when someone tries to access VIP records and cancels out the request.