Maize Analytics, a leading provider of data governance solutions, announces today that it has been ranked the top Patient Privacy Monitoring Solution in the 2021 Best in KLAS: Software & Services Report.
Maize Analytics was founded in 2013 with the goal of helping healthcare organizations protect patient data. Through Maize’s patented, peer-reviewed, and published solution, compliance and privacy officers are able to quickly audit medical record accesses and identify suspicious behavior. Today, the Maize team supports healthcare facilities and organizations across the United States and Canada.
Each year, KLAS published the Best in KLAS report, ranking vendors across the many technology and services markets within healthcare. This report amplifies the voice of the provider and payer communities, whose willingness to share their feedback with KLAS fuels this report. Being a ‘Best in KLAS’ vendor means that provider organizations have found the vendor to be the leader in their market segment. Healthcare providers hold Best in KLAS vendors to the highest standard of excellence.
“We are extremely proud to be acknowledged as the 2021 Best in KLAS for Patient Privacy Monitoring,” says Daniel Fabbri, the Founder, and CEO of Maize Analytics. He continues, “This award is a testament to our team’s effort to build great tools for our end-users and also provide top-tier customer support.”
Often when discussing hospital security threats, external breaches are the main focus. However, recent evidence shows those breaches are not the biggest concern to hospitals – they’re more concerned with breaches that can happen within their own halls, by their own staff.
HIMSS Media recently conducted a study on behalf of SailPoint, and the general consensus was that healthcare provider organizations are highly concerned about threats posed by insiders. 43% of healthcare provider respondents said they were more concerned about insider threats to data than external breaches. Given this concern, it would be assumed that these organizations have the technology in place to help them audit internal accesses; but this is currently not the case. Instead, the top tactics to thwart insider threats are training and awareness programs for users. While these are both important, training can only do so much, and it cannot be the complete process for preventing and detecting internal threats.
The best way to combat insider threats is by combining a training and awareness program with technology. With machine learning, user-based analytics, and artificial intelligence programs that monitor ePHI access, hospitals can catch inappropriate access to patient data. Although these programs have recently been on the rise in the healthcare industry, only 48% of healthcare provider organizations use access behavior monitoring and analytics as part of their approach to detecting insider threats. Many compliance officers are still using manual solutions for their internal auditing, which is time-consuming and cannot scale with millions of accesses per day.
There’s always a level of uncertainty when adding a tool to an auditing process. Users wonder if it will actually help, or if it will add more work to their day, making their job more difficult. When exploring potential tools, users should search for a system that is easy to use, ensures smooth integration into their current process, and will allow them to review and approve auditing policies so they can explain what the machine algorithm is doing and define their policy to regulators if needed.
It’s clear that insider threats are a high-priority concern, yet healthcare provider organizations are only beginning to leverage the powerful technology available to monitor these accesses. A proper training and awareness program combined with an auditing system that can detect and report on unauthorized access is vital to all of these organizations.
Contact us for more information on how Maize can help you manage insider threats to your healthcare institution.
Clinical researchers require access to electronic medical records (EMR) for chart review. However, ensuring that researchers do not overstep and access data not associated with a research study is challenging.
See the steps at: http://complianceandethics.org/steps-effectively-monitoring-researchers-emr-accesses/