Tufts Medicine Secures 21k+ Connected Medical & IoT Devices Case Study
Tufts Medicine Secures 21k+ Connected Medical & IoT Devices Across Four Locations
Case Study
“Asimily is not just a technology vendor. They are a true security partner. The team is quick to respond to inquiries and feature requests as we build out and mature our Cybersecurity program.”
Brian Cayer, Chief Information Security Officer, Tufts Medicine
4
1,116
21k
15k+
Hospitals
Beds
Connected
Employees
& Physicians
Customer
Headquarters
Industry
Tufts Medicine is a leading integrated health system bringing together the best of academic and community health care to deliver exceptional, connected and accessible care experience to consumers across Massachusetts. Comprised of Tufts Medical Center, Lowell General Hospital, MelroseWakefield Healthcare, Tufts Medicine Care at Home, and an expansive network of clinically integrated physicians.
Tufts Medicine
Boston, Massachusetts
Healthcare
Challenge
Tufts Medicine observed a dramatic increase in U.S. hospital cyberattacks. Each of their locations were at a different maturity level, and they lacked visibility into their connected devices and vulnerabilities. They formed a new security team and restructured security operations to a centralized Information Technology team with dedicated security specialists. Tufts needed a way to passively scan medical devices, prioritize vulnerabilities, and streamline mediation efforts with their outsourced Clinical Engineering teams.
improve asset visibility through accurate detection of connected medical and IoT devices and inventory management capabilities;
tailor workflow to their organizational processes;
prioritize and remediate vulnerabilities;
implement an effective incident response program;
evaluate the cyber risk of devices prior to purchase;
establish baseline metrics and performance KPIs including clear risk reduction metrics;
gauge their organizational risk and compare it to industry standards;
and be a strategic technology partner.
•
•
•
•
•
•
•
Solution
After a complete evaluation, Tufts Medicine selected Asimily because of its vulnerability management capabilities and viewed Asimily as a strategic technology partner.
Asimily Insight was deployed with five Edge processors at each location and integrations with Rapid 7 InsightVM for a holistic view of vulnerabilities across their environment, Azure AD for single sign-on, and Azure Sentinel (SIEM) for a single pane of glass view of threats across their organization.
connected medical devices were automatically detected and classified;
existing vulnerabilities were identified and correlated to all impacted devices via passive scanning;
prioritize and remediate vulnerabilities;
clinically-validate remediation instructions were automatically delivered and prioritized for clinical engineering teams; and
unauthorized devices were detected with automated workflows and alerts.
•
•
•
•
Tufts Medicine will continue to mature its security program by implementing:
pre-procurement risk assessments using Asimily ProSecure;
a deeper Incident Response workflow with their 24/7 SOC team via SIEM integration; and
integrations with CrowdStrike for additional threat data from the devices, ServiceNow CM DB to enrich and reconcile device inventories, and Aruba ClearPass (NAC) to enable network enforcement and segmentation.
•
“Our main goal was to gain visibility into our medical and IoT device inventory. We prefer Asimily’s dashboard and data visualization. We now have accurate visibility into inventory. Vulnerabilities are prioritized through our Attack Surface Management (ASM) team.”
Brian Cayer, Chief Information Security Officer, Tufts Medicine
Tufts Medicine evaluated four IoMT cybersecurity vendors for the ability to:
Key milestones included:
