Securing Critical Patient Data: Bioventus' Success with Rapid7
Technology Category
- Cybersecurity & Privacy - Endpoint Security
- Cybersecurity & Privacy - Intrusion Detection
Applicable Industries
- Equipment & Machinery
- National Security & Defense
Use Cases
- Counterfeit Product Identification
- Tamper Detection
Services
- Cloud Planning, Design & Implementation Services
- Cybersecurity Services
About The Customer
Bioventus is a global leader in innovations for active healing and surgical orthobiologics. The company works with patients, payers, and healthcare providers throughout the world. Based in Durham, North Carolina, Bioventus has more than 1,100 employees and a presence in over 50 countries worldwide. In a single year, Bioventus products help more than 500,000 people regain active lifestyles. The company operates internationally, dealing with medical devices and patient information that must be protected at all costs. Bioventus' security is managed by Kerry LeBlanc, who is responsible for the company's cybersecurity, reporting to the director of IT infrastructure and security.
The Challenge
Bioventus, a global leader in active healing and surgical orthobiologics, faced significant security challenges due to its large distributed workforce, multiple clouds, diverse devices, and the critical nature of patient data. The company's security team had to deal with user compromise and phishing emails on a daily basis. As an international healthcare company based in the US, Bioventus had the additional challenge of safeguarding patient records. A breach of any sort could be damaging, but a breach of patient records could be particularly expensive. The company also faced common security challenges for enterprises of its size, such as attacks on its cloud-based networks.
The Solution
To address these challenges, Bioventus implemented Rapid7 InsightVM, a leading vulnerability management solution, and Rapid7 InsightIDR, a leading cloud SIEM. The company chose Rapid7 due to its system-wide integration with both InsightIDR and InsightVM. Rapid7's solutions integrated well with the existing environment and the tools Bioventus wanted to implement. Rapid7 also provided strong tech support. The first step was a system-wide assessment to identify gaps and weaknesses. The company needed a SIEM, a vulnerability management solution, and an endpoint detection and response solution. Rapid7 provided visibility and context into threats, discovered unknown issues, and enabled quick correlation, analysis, prioritization, and remediation of threats. The company also used InsightIDR Enhanced Endpoint Telemetry for alerting on malicious processes, threat hunting, asset authentication reporting, and failures.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Smart Water Filtration Systems
Before working with Ayla Networks, Ozner was already using cloud connectivity to identify and solve water-filtration system malfunctions as well as to monitor filter cartridges for replacements.But, in June 2015, Ozner executives talked with Ayla about how the company might further improve its water systems with IoT technology. They liked what they heard from Ayla, but the executives needed to be sure that Ayla’s Agile IoT Platform provided the security and reliability Ozner required.
Case Study
IoT enabled Fleet Management with MindSphere
In view of growing competition, Gämmerler had a strong need to remain competitive via process optimization, reliability and gentle handling of printed products, even at highest press speeds. In addition, a digitalization initiative also included developing a key differentiation via data-driven services offers.
Case Study
Predictive Maintenance for Industrial Chillers
For global leaders in the industrial chiller manufacturing, reliability of the entire production process is of the utmost importance. Chillers are refrigeration systems that produce ice water to provide cooling for a process or industrial application. One of those leaders sought a way to respond to asset performance issues, even before they occur. The intelligence to guarantee maximum reliability of cooling devices is embedded (pre-alarming). A pre-alarming phase means that the cooling device still works, but symptoms may appear, telling manufacturers that a failure is likely to occur in the near future. Chillers who are not internet connected at that moment, provide little insight in this pre-alarming phase.
Case Study
Premium Appliance Producer Innovates with Internet of Everything
Sub-Zero faced the largest product launch in the company’s history:It wanted to launch 60 new products as scheduled while simultaneously opening a new “greenfield” production facility, yet still adhering to stringent quality requirements and manage issues from new supply-chain partners. A the same time, it wanted to increase staff productivity time and collaboration while reducing travel and costs.
Case Study
Integration of PLC with IoT for Bosch Rexroth
The application arises from the need to monitor and anticipate the problems of one or more machines managed by a PLC. These problems, often resulting from the accumulation over time of small discrepancies, require, when they occur, ex post technical operations maintenance.
Case Study
Robot Saves Money and Time for US Custom Molding Company
Injection Technology (Itech) is a custom molder for a variety of clients that require precision plastic parts for such products as electric meter covers, dental appliance cases and spools. With 95 employees operating 23 molding machines in a 30,000 square foot plant, Itech wanted to reduce man hours and increase efficiency.
