API Sentry service helps healthcare organizations understand and mitigate risks related to how data is shared through APIs
CynergisTek, Inc. (NYSE AMERICAN: CTEK), a leader in information security, privacy, and compliance, today announced the launch of their API Sentry service, developed specifically for healthcare organizations to manage the risks associated with the use of APIs within their environment. CynergisTek’s API Sentry service is powered by APIsec.ai, which leverages unique technology to facilitate ongoing testing and identifies security vulnerabilities, business logic flaws, and access control issues that can lead to a loss of sensitive data.
Organizations have rapidly adopted APIs to accelerate the secure exchange of electronic health records, and market research has linked the uptick of API use in healthcare to growing use of apps and wearables prescribed by medical providers and remote patient monitoring. However, using these technical building blocks doesn’t come without risk: APIs now account for 40 percent of the overall attack-area for web-enabled apps.
“Streamlining the use of APIs has never been more important as it lays the foundation for better interoperability between applications, but also increases the attack surface for hackers,” said Ben Denkers, senior vice president of security and privacy services at CynergisTek. “Hospitals are becoming more forward-thinking when it comes to data sharing and ushering in technological innovation, but they also need to be smart about preventing breaches. Our API Sentry service helps healthcare organizations detect and remediate vulnerabilities created by the increased use of APIs to accelerate enhanced interoperability of records and data.”
Interoperability is not an option, new regulations from the U.S. Department of Health and Human Services set requirements for data sharing, ensuring that patients’ data is accessible through third-party applications. CynergisTek’s API Sentry service helps ensure sensitive patient data accessed via APIs is safe and secure – providing readable data and actionable results by adding an intelligence layer and perspective on what a healthcare organization needs to identify risk and to rectify or accept it.
With API Sentry service, healthcare organizations will have access to the CynergisTek Reporting Dashboard to track and manage both identified vulnerabilities and associated remediation efforts. Organizations will also receive an API Sentry Report, which will offer key insights on vulnerabilities, identify risk, provide remediation guidance, and strategic, tactical actions for stakeholders to drive policy and for IT staff, network administration and developers to drive technical remediation efforts.
For more information visit CynergisTek’s API Sentry service information page.
About APIsec, Inc.
APIsec brings comprehensive security to any API, automatically discovering security zero-day vulnerabilities, business logic faults, and RBAC issues. With no tuning or training, APIsec automatically creates and runs thousands of attack scenarios against APIs, filing issues with ticketing systems, and producing compliance-ready pen-test reports. APIsec integrates with API gateways and platforms, and with CI/CD frameworks to automatically test new code in real-time. APIsec makes pen-testing automated, continuous, and comprehensive, providing critical visibility into application vulnerabilities before production. Learn more at www.apisec.ai
About CynergisTek, Inc.
CynergisTek is a top-ranked cybersecurity firm dedicated to serving the information assurance needs of the healthcare industry. CynergisTek offers specialized services and solutions to help organizations achieve privacy, security, and compliance goals. Since 2004, the company has served as a partner to hundreds of healthcare organizations and is dedicated to supporting and educating the industry by contributing to relevant industry associations. The company has been recognized by KLAS as a top-performing firm in healthcare cybersecurity and was awarded the 2019 Top Healthcare Cybersecurity Consultants in Black Book IT Advisory Outcomes Survey.