800-810-1885
Home > Blog > Uncategorized

Category Archives: Uncategorized

Olympic Gold Comes to Sword & Shield

By Lara Bergman | Published: July 31, 2012

Sword & Shield Director of Enterprise Solutions Fred Cobb won two gold medals and one silver medal in the Senior Olympics (for the 50-54 age bracket), held earlier this month in Franklin, TN for his solid play in Pickleball, a racquet sport which combines elements of badminton, tennis, and table tennis.

Cobb received the gold medal in the Men’s Singles, a gold medal for Men’s Doubles with fellow player Denny Kennedy, and a silver medal for Mixed Doubles with player Janet Winslow.

Cobb, Kennedy and Winslow are all residents of Tellico Village and play the sport every week at the Tellico Village Recreation Center. Cobb credits his interest in the sport after seeing others play Pickleball two years ago and decided to join in on the game. Cobb said he quickly found that his tennis skills – smashes, volleys, topspins, underspins, and dinks – translated well to the Pickleball court and it soon became one of his favorite pastimes, along with golf and swimming with his wife, Karen.

This win qualified Cobb to compete in the nationals to be held in Cleveland, OH in July 2013.

Posted in Uncategorized | Leave a comment


Is Your Anti-Virus a Fake?

By Lara Bergman | Published: June 5, 2012

Sword & Shield Security Analyst Jason Graf discusses fake anti-virus software with Channel 10 News’ Robin Wilhoit.

Posted in Uncategorized | Leave a comment


Data Breach at BCBS of TN Ushers in New Era of HITECH Enforcement

By Lara Bergman | Published: March 22, 2012

Dark Reading: $1.5M Fine Marks A New Era In HITECH Enforcement

Enforcement actions from the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) just reached a new level of reality last week when the department announced a $1.5 million settlement with BlueCross BlueShield of Tennessee over a 2010 data breach, making the organization the first pay out penalties since the Health Information Technology for Economic and Clinical Health Act (HITECH) went live in 2009. The question now is whether such tangible examples of financial fallout will convince healthcare IT to invest in better security measures.

Posted in Uncategorized | Leave a comment


Attorneys: Be Aware When Reviewing Emails in Outlook

By Bill Dean | Published: January 10, 2012
Bill Dean

Bill Dean, Director of Computer Forensics

I am well aware that the use of Microsoft Outlook to review email is a perceivably convenient and low cost method to review small volumes of email. However, this method is laced with potential issues that just aren’t worth the risks – and there are risks. This article will address some of these risks to hopefully encourage the use of better technology to review email, or at least educate you enough to understand the risks.

So your client produced his or her email for you to review in a PST format (Microsoft Outlook Email Database). You are already proficient in the use of Microsoft Outlook as it likely already dictates much of your day. Either you already know how to attach this file to Outlook or your “friendly” IT staff will do it for you. You have the email loaded and you are ready to begin, but before you start, let’s talk about keyword searching.

Google has been a great asset to our culture in many ways. For the litigation field, it has inadvertently educated you how to perform Boolean searches. When you search Google for “Trade secret theft” and “Case Law” in the same query, you have performed a powerful Boolean search. However, Boolean search features such as this are not as intuitive in Microsoft Outlook and require extensive effort to execute. Difficulty performing Boolean searches is the good news. The bad news is that Microsoft Outlook, by default, will not search the contents of attachments for the keywords. Your searches will only address the email fields and the contents of an email message, which could potentially omit responsive information. We will visit the danger of attachments later in this article.

The read receipt option on sent emails presents another concern. If an unread email you are reviewing has the read receipt option set, your review of that email could inadvertently send a message to the sender that the email has been read. Consider the implications for that for a moment. There is one instance in which the custodian was deceased and his widow received a read receipt “from beyond the grave”.

Read More »

Posted in Uncategorized | Leave a comment


Join Us For a Webinar with our New Partner: Prism Microsystems

By Lara Bergman | Published: December 14, 2011

Sword & Shield will host a webinar Thursday, Dec. 15 at 2 p.m. EST with its new partner, Prism Microsystems, to featuEventTrackerre EventTracker, a comprehensive security information and event management (SIEM).

EventTracker combines log consolidation and log management, real-time threat monitoring and behavioral correlation, incident management with forensic analysis, regulatory compliance and reporting, monitoring of file integrity and USB devices and performs system change audits and management with automatic remediation.

Attend the webinar and see EventTracker in action. Participants are also registered to win a Kindle Fire.

Prism CEO A.N. Ananth will host the event and will demonstrate EventTracker’s real-time log analysis and automated response to:

  • Network Attacks
  • Insider Threats
  • Security Policy Violations
  • Unauthorized Application Useage
  • Managing USB Storate Devices

If you’re an IT professional, financial executive or business manager with responsibility for regulatory compliance, risk management or technology investments, please click here to register.

Posted in Uncategorized | 1 Comment


Join Sword & Shield and Barracuda for Lunch

By Lara Bergman | Published: November 4, 2011

Sword & Shield and our vendor partner, Barracuda Networks will host a Lunch N’ Learn Thursday, Nov. 10 at Ruth’s Chris Steak House in downtown Knoxville to address the latest trends in content security, data discovery and protection and application delivery solutions to improve your company’s productivity.

Bill Dean, Sword & Shield’s director of computer forensics, will speak about the importance of eDiscovery.  Participants will also learn how to streamline backup strategies by eliminating removable media and how to achieve massive storage reductions by using data deduplication technology.  Whether it’s recovering from a single or lost file, or a hurricane-damaged building,  backups can be simplified and provide quick data recovery.

A Barracuda representative will discuss the Baracuda product line and how it can benefit your company by archiving emails for compliance readiness and how the operational efficiency of your email server can be improved by offloading email messages.  Learn how users can archive calendar items, contacts and tasks from Microsoft Exchange and other email servers, and how to eliminate the need for PST file storage.

Click Here to For More Details and to Register

Read More »

Posted in Uncategorized | Leave a comment


Sword & Shield Partners with TriGEO to Offer Mid-Market Solutions

By Lara Bergman | Published: April 29, 2011

Most mid-market companies don’t have the luxury – and sometimes the means – to run a 24/7 security operations center. 

But, in partnering with TriGeo Network Security, Sword & Shield can now offer TriGeo’s award-winning security information and event management (SIEM) technology for mid-market enterprises. This product combines real-time log management, IT search, event correlation and endpoint security with active response for true proactive network defense. The result is a unique network appliance that delivers unprecedented visibility, security and control.

Live Webcast Demo - Learn MoreTriGeo SIM is both a unique network defense technology and an “Audit Proven” compliance solution that meets the security monitoring and log management requirements imposed by PCI, GLBA, NCUA, NERC CIP, FDIC, HIPAA, SOX and more. The company offers a free online demo twice a week for business or IT leaders.  Register for the demo to learn more.

TriGeo serves hundreds of customers in several markets, including financial services, healthcare, government, utility, retail and media/entertainment.

TriGeo SIM has won numerous awards including the 2010 SC MagazineSIEM Group Test, the 2010 Top Midmarket Security Product award from CRN, the Best Execution of a Midmarket IT Solution and Best Presentation at the 2010 Midsize Enterprise Summit and the 2010 Best Midmarket Solution at the IT Business Edge Midmarket CIO forum.  The company also is a member of the PCI Security Standards Council and PCI Security Vendor Alliance and is represented by partners worldwide.

For more information, contact a Sword & Shield products specialist from this website or call 800-810-1885.

Posted in Uncategorized | Leave a comment


SoCal HIMSS Healthcare IT Conference Highlights Growing Need for Security and Compliance

By Bowe Hoy | Published: March 16, 2011

The topic of  managing an increasing volume of electronic data securely, while keeping up with regulatory compliance requirements  dominatedthe recent 2011 Southern California HiMSS Chapter’s Second Annual Healthcare IT Conference,  Healthcare Reform: Driving to 2015 and Beyond.

That title may give the appearance of a conference agenda driven by healthcare policies and politics. While there was a certain amount of discussion surrounding those topics, the underlying tone of the event was less about policies and politics and more about the practical implications of the exploding growth of healthcare electronic data, and the associating compliance demands that come with it.  In other words, the concerns of the conference attendees aligns with Sword & Shield’s  mission of supporting healthcare organizations’ information security and compliance challenges and requirements.

The pains of managing electronic data is felt the most by healthcare executives from covered entities such as hospitals. Two of those executives, Thomas Priselac, president & CEO of Cedars-Sinai Health System and Dr. Sajjad Yacoob, chief medical information officer and physician from Children’s Hospital of Los Angeles,  provided unique, but similar, perspectives on the issue of healthcare information security and compliance.

Consistent with the conference’s theme, Priselac focused on the state of healthcare reform, including industry progress. He also shared his thoughts on key factors for the future of healthcare reform. Not surprisingly one of the key factors is uncertainty – there are no guarantees that the current healthcare law will remain in its current form. In fact, there is a high likelihood that parts of it or even the entire law could change in the short or long term.

The ever-changing healthcare information technology landscape and the security and compliance challenges presented with it was the focus of Yacoob’s presentation as well.  Yacoob offered an interesting paradox: the healthcare industry is completely dependent on information technology, which changes at a rapid rate. However, IT users, especially doctors, are very slow to adapt to technological changes. One of the unintended consequences of this paradox is greater potential for security breaches and vulnerabilities. Resisting technological change often means resisting crucial security best practices once the change is adopted. Backing up that notion is a recently released study by the Ponemon Institute, which found that the leading cause of breaches is negligence, accounting for 41 percent, up slightly from 40 percent in 2009. The cost of these breaches averaged $196 per record, up 27 percent from 2009, according to the study.

The growing cost of breaches underscores the importance of healthcare organizations securing electronic protected health information (ePHI), along with addressing risks, specifically in regard to information privacy and security.  Alongside that requirement is the need to implement the appropriate safeguards for managing and controlling those risks. Sword & Shield is uniqqualified to help healthcare organizations secure ePHI while helping them become and remain compliant with regulations such as uely HIPAA, HITECH, and Meaningful Use.

Speaking of Meaningful Use, today’s healthcare IT conference would not be complete without including that topic on the agenda. And on that note, the SoCal HIMSS Heathcare IT Conference  delivered by offering a Meaningful Use panel, featuring presentations from a number of experts. Among them was Lori Hack, who serves as the chair of the board of directors for the California eHealth Collaborative.

Hack’s presentation, Finding Meaning in Meaningful Use,offered insightful information about Meaningful Use while providing practical advice on approaches to meeting the requirements. Even more impressive was Hack’s coverage of the Meaningful Use risk assessment requirement. The context of her message – that the Meaningful Use process should not be just about getting funds, but should be done with security and risk management in mind – was refreshing to hear.  And it was another indication that this conference was much more than about healthcare policies and politics.

Bowe Hoy is an Enterprise Security Consultant for Sword & Shield. If you need more information regarding HIPAA, HITECH, and Meaningful Use risk assessment and compliance, please contact him via our website or by phone at 865-244-3521.


Also posted in Compliance | Tagged , , , , | Leave a comment


The Big Star of the Big HIMSS11 Show: Meaningful Use

By Bowe Hoy | Published: March 2, 2011

Everything about the 11th Annual Healthcare Information and Management Systems Society (HIMSS) conference was big: big exhibits, big conference hall, big crowds and big name speakers.

But the biggest run-away hit on the agenda was the issue of Meaningful Use (MU),  a critical level for the use of electronic health records (EHR) and related technology within a healthcare organization that, if achieved by 2011, will offer incentive payments. However, the lack of focus on the fact that a company attempting to achieve MU MUST have a risk assessment to qualify for any incentive was perplexing – and this is where Sword & Shield stepped in to fill the void.

By HIMSS’s own admission, the conference would be big. The numbers plastered on the HIMSS11 website is staggering:

  • 5 days
  • 400+ sessions
  • 500 speakers
  • 900+ exhibits
  • 29,000+ professionals, decision makers, thought leaders…

To their credit, HIMSS did not exaggerate one bit. The large scale impact of HIMSS11 could be felt almost immediately upon arriving in Orlando. The many hotels within the Walt Disney Resort area that housed the majority of the more than 29,000 attendees were ubiquitous with HIMSS11 signs, banners, and placards. Numerous tour buses, each wrapped from front to back, top to bottom with HIMSS11 sponsorship advertising, ran back and forth between the hotels and the Orange County Convention Center (OCCC), picking up and dropping off the many HIMSS11 participants throughout the day.

Read More »

Also posted in Compliance | Tagged , , , , , , | 1 Comment


CRN Recognizes Sword & Shield as a Need to Know VAR

By Lara Bergman | Published: February 14, 2011

CRN, an online technology  magazine, has selected Sword & Shield as one of the top security Value Added Resellers in the IT security space.  

“A CRN Fast Growth 100 and VAR50 company, Sword & Shield was founded in 1997 to offer network security services,” the magazine reports. “Based in Knoxville, Tenn., with offices in Lexington, Ky., Washington, D.C., and Alexandria Va., Sword & Shield focuses on forensics, e-discovery, risk and compliance.”

The magazine reports that mobility, back up, cloud computing, and compliance are among the areas where solution providers are picking up keen interest from customers.  Companies don’t always have the appropriate manpower to put behind preparing for audits, so it poses operational and security worries for everyone. This is where a VAR like Sword & Shield can help. Many security professionals do welcome compliance audits — most of these things should be done anyway – and compliance makes businesses more secure.

While some companies offer web and network security services as an add-on to their financial auditing or IT consulting practices, with Sword & Shield security is our core business. We provide web application and network security assessments, security risk and compliance services, forensic and eDiscovery services along with best-of breed security products.  With a highly trained professional staff, Sword & Shield has extensive experience supporting corporate IT environments, law enforcements agencies, attorneys and mission-critical federal systems.

Posted in Uncategorized | Leave a comment