I manage an IT company that specializes in Dental Technology. We provide HIPAA compliant data security, and are a full service MSP in the Bay Area.
We recently have hired outside HIPAA compliance experts to come into our clients as a third party consultation, in order to address their clerical needs and policy & procedure booklets (we supply the HIPAA compliant solutions on the network, but don't address policies/procedures outside of the network).
Recently, one of our offices proposed to us that we supply them a hardware firewall, which is something that we have always avoided by using Cisco businessclass router/firewalls. We agree, for this particular office, that a hardware firewall should be in place, since it is one of our larger clients (40+ PC's).
We are looking for a firewall which will provide HIPAA-required audit trails of any breach attempt, malware infection, traffic data, and also to provide packet filtering.
Long story short - we are all totally new to firewalls, and could use any suggestions of companies and models to look into.