Alcide Releases Free HIPAA Scan to Healthcare Companies
April 06, 2020

Alcide announced that the Alcide Kubernetes Security Platform now supports HIPAA compliance scans.

The new HIPAA compliance scanning capability adds to PCI and GDPR compliance scans that were announced by Alcide earlier this year, enabling DevOps and compliance managers to rapidly assess HIPAA regulatory compliance for free during a period where hackers are targeting vulnerabilities in software rushed into service to help combat COVID-19.

The Healthcare industry has been experiencing a surge of cyber attacks. This increase in hacking attempts has even prompted cybersecurity professionals to form a response group called Cyber Volunteers 19 (CV19). Alcide is contributing to security efforts that support healthcare organizations by offering a free HIPAA compliance scan for Kubernetes deployments using the Alcide Kubernetes Advisor.

“Alcide is stepping between hackers and the valiant heroes fighting the virus by offering free scans for HIPAA compliance,” said Amir Ofek, CEO at Alcide. “This is a time when people should be coming together to aid the global response to COVID-19, and it’s shameful that some hacker groups are seeking to victimize those who are helping on the front lines of the crisis.”

Alcide helps compliance managers score their HIPAA compliance by providing them with the below set of automated checks:

- Instant visibility - enables companies to automatically discover cloud and Kubernetes workloads using a graphical representation of infrastructure and applications (services) that update in real time. HIPAA environments can be classified using Kubernetes native tags to aid the secure management of HIPAA-related data flows.

- Identify and document asset vulnerabilities - Alcide’s built-in HIPAA package provides automated checks for compliance with standards such as the Center for Internet Security (CIS) Benchmark for Kubernetes and scans for Common Vulnerabilities and Exploits (CVEs).

- Monitor for access control - monitors and alerts on all access to governed workloads. Alcide also ensures that Role-Based Access Control (RBAC) is correctly configured to limit access to HIPAA-related resources.

- Protect data-in-transit - ensure that Kubernetes resources that expose HIPAA data to open, public networks are configured with Transport Layer Security (TLS).

- Regularly update risk assessment information - threat intelligence and CVE data is periodically updated from well-known repositories such as open-source lists and commercial vendors.

- Ongoing scan of audit logs for risks - uses machine learning to build profiles of user behaviors and scans K8s audit logs to detect abusive or abnormal activity.

Alcide now offers a free HIPAA security package for the healthcare community. Healthcare organizations can now use Alcide’s security SaaS platform to secure development and production deployments of containerized applications on Kubernetes. From scanning vulnerabilities in Kubernetes clusters to detecting anomalous behavior and defining policies for firewalling microservices, the Alcide Kubernetes Security Platform is ready to help the healthcare community.

Share this

Industry News

March 27, 2024

WaveMaker has updated its platform in response to customer demand for more sophisticated API and code management tools.

March 27, 2024

Vercara announced the launch of UltraAPI™, a product suite that protects APIs and web applications from malicious bots and fraudulent activity while ensuring regulatory compliance.

March 27, 2024

Legit Security announced the launch of its standalone enterprise secrets scanning product, which can detect, remediate, and prevent secrets exposure across the software development pipeline.

March 26, 2024

Progress announced a strategic partnership with Veeam® Software, the #1 leader by market share in Data Protection and Ransomware Recovery, to provide customers with an enterprise-ready cyber defense solution that strengthens the security of their business-critical data.

March 26, 2024

GitGuardian released its Software Composition Analysis (SCA) module.

March 26, 2024

DataStax announced a milestone in its journey to simplify enterprise retrieval-augmented generation (RAG) for developers by integrating with Microsoft Semantic Kernel.

March 25, 2024

Check Point® Software Technologies Ltd. is collaborating with NVIDIA to enhance the security of AI cloud infrastructure. Integrating NVIDIA BlueField DPUs, which feature a broad range of purpose-built, innovative security capabilities, the new Check Point AI Cloud Protect solution will help prevent threats at both the network and host levels.

March 25, 2024

Sentry announced the release of Autofix, an AI-powered feature to debug and fix code in minutes, saving important time and resources.

March 25, 2024

Apiiro announced a product integration and partnership with Secure Code Warrior, the agile developer security training platform, to extend its ASPM technology and processes to the people layer.

March 21, 2024

Progress announced that Progress® Semaphore™, its metadata management and semantic AI platform, was named a Champion in SoftwareReviews’ 2024 Metadata Management Emotional Footprint Awards.

March 21, 2024

The Cloud Native Computing Foundation® (CNCF®) has partnered with Udemy, an online skills marketplace and learning platform.

March 21, 2024

GitLab has acquired Oxeye, the provider of a cloud-native application security and risk management solution.

March 21, 2024

GitHub announced that code scanning autofix, powered by GitHub Copilot and CodeQL, is available in public beta for all GitHub Advanced Security (GHAS) customers.

March 21, 2024

NetApp is collaborating with NVIDIA to advance retrieval-augmented generation (RAG) for generative AI applications.

March 21, 2024

CalypsoAI launched the CalypsoAI Platform, an advanced SaaS-based security and enablement solution for generative AI applications within the enterprise.