Back to Newsletter Archive

Having trouble seeing this email. View it online.
Sword & Shield - Intelligent Security
Security Solutions for Peace of MindAugust 2015
Beginning Your Secure Future
Data Exfiltration Should be a Concern for Every Healthcare Organization
Healthcare records are like Manna from Heaven to a cyber-thief.

They contain personally identifiable information like social security numbers, names, addresses and insurance information.

That information can be used to obtain credit cards or loans, commit tax fraud, send fake bills to insurance providers or use patient information to obtain prescription medication.

Cyber-attacks on healthcare organizations are up more than 125 percent and are now the leading cause of data breaches, but, according to a Ponemon Institute Benchmark Study on Privacy and Security of Healthcare Data, only 40 percent of the companies surveyed were concerned about these attacks.

In one of the largest breaches of healthcare information, Anthem Inc., a health insurance company, reported that personally identifiable information was obtained using data exfiltration through an external web service such as Google cloud or Dropbox.

Data exfiltration is the unauthorized transfer of sensitive information from a target organization's network to a location which is controlled by the hacker. If a hacker wants to target your organization, he will persist until he succeeds.

So how do you prevent or lessen that threat?

By developing a long-term, security-focused and strategic plan.

A log monitoring and management solution, staffed with experienced security operations center (SOC) analysts can maximize your investment in security, but that means either hiring more IT security staff or utilizing the services of a Managed Security Services Provider (MSSP).

Small to mid-sized healthcare providers typically cannot afford to set up their own SOC, so hiring an MSSP is more efficient and cost-effective. Our Managed Security service can help you quickly, easily and cost-effectively deploy all the security controls you need to detect, analyze, log, monitor and react to threats, while our Data Breach Threat Analysis service can be used to determine if a customer's networks have been compromised and if attackers are actively exfiltrating data.

Sword & Shield can help. Please call us at 865-244-3500 or email us at to learn more about how data exfiltration can cost your business and how we can partner with you to defend your network.
Now Offering CISSP Training Through (ISC)2
The challenge to protect the information that is both shared and available online continues to grow as the Internet expands. Companies and governments are spending billions of dollars to secure their data and prevent outside attacks. They need employees who are skilled in thwarting these attacks

Obtaining a Certified Information Systems Security Professional (CISSP) certification shows you are an expert in information security and this increases your chances of being hired. It also increases the possibility you will be hired at a higher salary.

Sword & Shield's official five (5)-day (ISC)2 CISSP Training gets you trained, certified and back to work within a week with the skills necessary to protect your organization from hackers, attackers and security threats. Our program delivers the most up-to-date, authorized content and is back by our certification process. The course includes an exam voucher that can be used at any (ISC)2 -approved testing facility

Register for your class today!
Webinar: Zero to Fully Managed
Security threats to networks and data never end and malicious bad actors are actively pursuing your data.

The threats are constantly changing and keeping up with new threats is a large and costly challenge, but tighter budgets and fewer resources are forcing many business owners to re-think their network security plans.

Can a Managed Security Services Provider help you protect your business while keeping your bottom line in check?

Join Sword & Shield Director of Managed Security Services Brent Cantrell on Tuesday, Sept. 29 from 11 a.m. to noon as he discusses how to become, "Zero to Fully Managed."

Register here →
Alien Vault Certified Systems Engineer Training
Register for our Sept. 21-25 Alien Vault Certified Systems Engineer training held at our Knoxville office or online.

Operators with their ACSE certificate are highly valuable to government, MSSP and Enterprise employers around the world. With an ACSE on staff, Alien Vault customers will experience greater return on investment, better security and more efficient operational control.

Register here →