SecurityManager Overview

Single Data Model

SecurityManager is a component of DataExchange and leverages its existing ETL framework to consolidate data from the practice management system and other enterprise applications into a single data model for reporting. SecurityManager offers a single application for IT to manage users and the security office to monitor suspect behavior.

SecurityManager Can Help Organizations:

• Manage workforce security for HIPAA compliance
• Respond quickly to access anomalies
• Analyze roles and rights to optimize staff productivity

HIPAA Compliance

In order to comply with HIPAA regulations, medical organizations must effectively manage and monitor access to patient information across multiple applications and departments. The three key concerns for each system are identifying what PHI is being accessed, which users are accessing it, and the roles and privileges of these users. The challenge lies in the intersection of patients and users across the enterprise. While all platforms allow for management of user access and provide a degree of date/time stamping for access to information, these disparate systems do not offer a standard method in which to view permissions and user exercise of those permissions. SecurityManager facilitates extraction and load of data from leading practice management and EMR systems and transforms data into a standard dataset for proactive analysis of user privileges.

Software Functionality

The strength of SecurityManager lies in its data model. The base data from each system is unified into two simplified data structures representing user access of PHI and user rights in the enterprise: user events and user configuration.