HIPAA Journal is the leading provider of news, updates, and independent advice for HIPAA compliance

Third-Party Remote Access Study Reveals Compliance is Main Priority

The leading secure third-party remote access management solution provider, SecureLink, has recently published the findings from a its third-party remote access study. The purpose of the study was to explore the challenges faced by enterprise organizations and technology vendors related to third-party access to systems and applications and network access control. The survey identified the priorities for organizations in relation to compliance, risk mitigation, legal liability, and monitoring and auditing third party remote access.

“Third-party remote access is a big issue for enterprises and the technology vendors that support them, especially in highly regulated industries,” said SecureLink vice president of product, Rob Palermo. “The sharing of passwords, lack of coherent policies and lack of insight into who is accessing a network and when put organizations at risk for data breaches and other malicious cyberattacks. These activities expose organizations—both enterprises and vendors—to litigation and financial risk that can significantly impact a company.”

The study revealed the number one priority for enterprises is compliance with industry regulations such as HIPAA. 90% of the organizations that took part in the study were subject to regulatory compliance reporting. 64% of enterprise respondents said compliance was their main priority. Most enterprise organizations said secure remote access is an issue for third parties and internal employees. On average, enterprise organizations have to manage remote access for 67 vendors, with 90% of enterprise respondents managing multiple individual vendor users.

Managing remote third-party access for those vendors is not straightforward for many enterprises. One third of respondents said they use three or more solutions for managing remote access. Only 45% used a single solution.

Please see the HIPAA Journal Privacy Policy

3 Steps To HIPAA Compliance

Please see HIPAA Journal
privacy policy

  • Step 1 : Download Checklist.
  • Step 2 : Review Your Business.
  • Step 3 : Get Compliant!

The HIPAA Journal compliance checklist provides the top priorities for your organization to become fully HIPAA compliant.

For vendors, the number one priority was customer compliance. 92% of vendors represented in the survey support customers that are subject to federal regulatory compliance reporting. 82% said their main concern with remote access is ensuring compliance with customer requirements.

For vendors, remote access management is an even bigger headache. On average, vendors support 239 customers and most use multiple solutions to access customer networks. 47% said they use three or more solutions, and only 29% use a single solution.

SecureLink’s solution eliminates the need for multiple remote access solutions and allows organizations in regulated industries and technology vendors to simplify third-party remote access management and remote support. The company’s platform is used by more than 30,000 organizations worldwide, across many industry sectors, including healthcare, financial services, legal, gaming and retail.

Author: Steve Alder is the editor-in-chief of HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered on HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has several years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics.