How Blanchard Valley Evolved from HIPAA Compliance to Real-Time Threat Detection

The Partnership:

Since 2014, Blanchard Valley Health System in Findlay, Ohio has partnered with Fortified Health Security to address evolving cybersecurity challenges. From initial HIPAA assessments to a comprehensive suite of managed services, this collaboration has grown into a strategic partnership that continues to strengthen the hospital system’s security posture.

The Challenge:

In 2014, Blanchard Valley Health System needed a reliable partner for their annual HIPAA assessments after transitioning away from an outsourced IT provider. They required clear, actionable reporting and ongoing support to meet stringent compliance requirements. Fortified Health Security’s healthcare-specific expertise, transparent reporting, and consistent communication made them the ideal choice. Their proactive approach included on-site gap analyses and guidance throughout remediation efforts, ensuring both compliance and long-term success.

Why Fortified Health Security?

Blanchard Valley Health System first encountered Fortified Health Security at an industry event. Impressed by their healthcare-specific expertise and collaborative approach, the health system began its journey with Fortified through annual HIPAA assessments and vulnerability scanning. Over time, this relationship evolved to include managed detection and response (MDR), a Security Information and Event Management (SIEM) system, and managed security awareness training.

Blanchard Valley Health System’s decision to expand its partnership with Fortified was driven by the company’s healthcare-specific focus and proven reliability.

Fortified Solutions Implemented:

1. HIPAA Assessments: Fortified provided detailed gap analyses and continuous remediation support, ensuring Blanchard Valley Health System maintained compliance.
2. Vulnerability Scanning and SIEM: After initially conducting vulnerability scanning in-house, the health system transitioned to Fortified’s MDR and SIEM solutions, leveraging AlienVault and, more recently, SentinelOne.
3. Managed Security Awareness Training: To address human vulnerabilities, Fortified introduced a structured training program that included baseline proficiency assessments and phishing simulations, creating targeted educational content for staff.
4. USAC Funding Support: Fortified guided Blanchard Valley Health System through the USAC funding application process, enabling cost savings on cybersecurity services.

Outcomes and Benefits:

• Enhanced Collaboration: Unlike previous vendors, Fortified adopted a highly collaborative approach. Monthly calls, real-time support, and consistent engagement ensured that the hospital’s cybersecurity needs were always met.
• Proactive Threat Detection and Response: Transitioning to managed detection and response eliminated delays in addressing security incidents. Real-time protection and reduced false positives have significantly eased the burden on the internal IT team.
• Board-Level Focus on Cybersecurity: With new leadership and tech-savvy board members, cybersecurity has become a strategic priority. Fortified has been instrumental in educating the board and securing increased funding for initiatives.

Looking Ahead:

Blanchard Valley Health System’s collaboration with Fortified Health Security continues to evolve. With a strategic plan in place and ongoing investments in training, detection, and response capabilities, the organization is well-positioned to address future cybersecurity challenges.