SOURCE: StillSecure


July 24, 2012 09:00 ET

StillSecure Delivers HIPAA Essential™

Managed Service Eases HIPAA HITECH Compliance and Reduces Risk of Significant Fines

SUPERIOR, CO--(Marketwire - Jul 24, 2012) - StillSecure®, a managed network security solutions and certified compliance company, today announced HIPAA Essential, a new bundled compliance managed service. HIPAA Essential is the only packaged managed security solution with third-party audited and approved security services aimed at easing the burden on organizations seeking HIPAA HITECH compliance.

Recently, HIPAA HITECH enforcement has been dramatically increased with multi-million-dollar fines being levied upon those that violate the statute. StillSecure's solution provides for data center and hosting partners with the technology, expert personnel, and certified processes to comply with a large number of the HIPAA HITECH requirements.

HIPAA Essential, which is available immediately through StillSecure partners, has been independently audited by Coalfire Systems. Coalfire validated each HIPAA HITECH requirement and how StillSecure's HIPAA Essential met those requirements. The compliance matrix is available from StillSecure at

HIPAA Essential not only meets HIPAA HITECH requirements, but also customers that utilize HIPAA Essential will inherit its controls and certification. Customers will also receive semi-annual security posture reviews by StillSecure security experts that manage and monitor the service 24x7. 

"HIPAA HITECH is now an enforceable regulation with civil and criminal penalties for non-compliance. Organizations must have expert personnel, tools and technology, and deep processes to ensure compliance on an on-going basis," said Rick Dakin, CEO and Senior Security Strategist, of Coalfire Systems. "StillSecure's HIPAA Essential is exactly the type of solution that organizations should seek for on-going HIPAA HITECH compliance. The solution has been audited to be compliant with the full set of HIPAA implementation specifications and not just a subset of controls convenient to the service provider. By addressing the full range of requirements as a monthly managed service, the cost of compliance is streamlined and dramatically reduced. We applaud StillSecure as one of the only MSSPs stepping up to develop an end-to-end security solution and subjecting the solution to a thorough audit."

In order to comply with the statute, StillSecure HIPAA Essential includes the following managed services:

  • Firewall
  • Intrusion Detection and Prevention System (IDPS)
  • SSL and IPSec VPN
  • Multi-Factor Authentication
  • Internal Vulnerability Scanning
  • External Vulnerability Scanning
  • Web Application Firewall (WAF)
  • File Integrity Monitoring (FIM)
  • Security Event Log Management (SELM) and Monitoring

These managed services are delivered through redundant SSAE No. 16 certified Security Operations Centers (SOCs). StillSecure's SOCs defend against the latest network security threats, monitor the security health of customer networks, and respond to customer inquiries. StillSecure's SOC analysts are highly experienced in monitoring potential threats from around the world in both traditional data environments, as well as for public and private cloud.

"HIPAA HITECH is a complex, ambiguous statute that is difficult for organizations to address," said Wendy Nather, the Research Director for the 451 Group. "Solutions that transparently address the requirements are a huge benefit to those struggling with how to comply cost-effectively."

"Many of our customers find HIPAA HITECH compliance very challenging," said David Kidd, Director of Compliance at Peak 10, a national data center and cloud services provider currently offering a unique HIPAA-compliant cloud solution that leverages technology from StillSecure. "StillSecure's HIPAA Essential is an ideal enhancement to our compliant cloud service, offering a 24/7 secure environment that helps further reduce the complications and expense of maintaining HIPAA compliance."

"Every day we talk to people pulling their hair out dealing with compliance issues. Whether it is the subjective nature of the regulations, the tedious processes that need to be implemented, or the significant financial burden, all of these IT people have a common request -- please take this monkey off of our back," said James Brown, CTO of StillSecure. "HIPAA Essential does exactly that. With our audited, certified solution, IT personnel can focus on their business and reduce the costs of compliance."

HIPAA touches on a wide range of issues including many that are not necessarily related to IT. StillSecure's goal is to provide a single solution to address as many of the IT requirements as possible, while being completely transparent on those requirements that StillSecure's managed solutions do not fulfill. For more information about HIPAA Essentials, see [URL] or call 303-381-3801.

HIPAA Essential will be generally available at the end of July.

About StillSecure
For IT executives facing escalating security threats and evolving compliance requirements, and data centers looking to cement long-term customer relationships, StillSecure designs and delivers managed network security and certified compliance solutions so you can focus on growing your core business. 

As opposed to vendors with uncertified partial fixes, or worse, self-audited solutions, StillSecure unites our security experts with our certified processes and innovative technologies to provide holistic solutions that eliminate the need for dedicated resources juggling multiple vendors, products and requirements.

For more information please call (303) 381-3830, visit, or check out more on the StillSecure blog at

Follow us on Twitter: and

Contact Information