a person working on a computer

Case Study: Maturity Threat Assessment

June 13, 2018

Case Study: Maturity Threat Assessment

Synopsis
3 Minute Read

CASE STUDY, Threat Assessment

St. Joseph’s Healthcare

THE PROJECT

Wanting to ensure they were improving their cyber security posture, St. Joseph’s Healthcare Hamilton engaged MNP in 2015 to conduct a series of three Maturity and Threat Analyses.

THE CHALLENGE

Healthcare institutions face several unique challenges when it comes to cyber security, ranging from an increasing number of attempted and successful attacks in recent years, storing a wide breadth of sensitive personal information – both patient and employee – and the relative lack of available resources for incumbents in the healthcare field to invest in shoring up their cyber security defences.

The nature of St. Joseph’s operations, the constantly shifting threat landscape and the evolving technology landscape within the healthcare sector would require an iterative threat analysis approach to ensure their cyber security strategy remains current with trends and continues to protect their information and human capital.

MNP’S APPROACH

Baseline Analysis

Our first step was to establish a baseline measurement of St. Joseph’s general cyber security preparedness. We reviewed their current cyber security controls and determined where deficiencies existed.

We then presented our findings to the executive on specific threats to their operations, general threats within the healthcare sector and a broader context of the hardware and managed service solutions needed to secure their computing environment.

Deficiency Rectification Analysis

We conducted the second phase of the Maturity Threat Analysis after St. Joseph’s had time to implement some of our recommendations. We followed the same approach as our baseline analysis, this time looking for changes in their threat profile indicative of an improved cyber security posture along with other potential threats which may not have appeared originally.

OUTCOME

The baseline analysis and deficiency rectification analysis allowed our team to design a more tailored risk management plan for St. Joseph’s – protecting their patients and staff and allowing them to move forward with confidence even as threats and tactics evolve. A follow-up assessment to measure the effectiveness of this plan and any notable shifts in the threat landscape will take place in late 2018.

For more information on how MNP can help your organization, contact:

Danny Timmins

National Cyber Security Leader

T: 905.607.9777

E: [email protected]

Eugene Ng

Cyber Security Leader, Eastern Canada

T: 905.607.9777

E: [email protected]

Tom Beaupre

Cyber Security Leader, Quebec

T: 514.228.7844

E: [email protected] 

Insights

  • Performance
    New Brunswick Government Building

    May 06, 2021

    New Brunswick Budget Highlights

    New Brunswick Finance Minister Ernie Steeves tabled the Province’s 2021-22 Budget on March 16, 2020, focusing on addressing public health challenges and supporting the Province’s economic recovery.

  • Performance
    business woman looking out by the window

    May 03, 2021

    Talk to the experts: Protect your business against fraud

    Listen in and find out how to better protect your business against fraud, with Lisa Majeau Gordon, MNP's National Leader of Forensics and Litigation Support.

  • Progress
    Business meeting

    May 03, 2021

    Purchasing a professional practice during a global pandemic

    Tips for navigating the changing world of professional practices from our experienced advisors.