Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Protecting Data Question


  • Please log in to reply
3 replies to this topic

#1 1337av

1337av

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 20 December 2015 - 05:54 PM

I'm a network analyst at an organization where I sometimes obtain files that contain private data such as Private Healthcare Information (PHI).  When I obtain these files, they are sent over secure communications that are compliant to HIPPA laws.  The problem I have is when I temporary store this data for analysis.  I've considered using full disk encryption, but my concern is the IT department.  Once I mount a hard drive, any domain administrator has access to it.  Anyone have any thoughts on what I can do?



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,766 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:50 PM

Posted 20 December 2015 - 06:25 PM

Since you say this is work related, have you asked the IT Dept about this? In most work environments, the IT staff implements specific policies and procedures for the use of computer equipment and related resources. This typically includes policies and procedures for data storage, email and transmitting of sensitive information such as that which may be related to HIPPA laws.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 1337av

1337av
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 20 December 2015 - 07:09 PM

Since you say this is work related, have you asked the IT Dept about this? In most work environments, the IT staff implements specific policies and procedures for the use of computer equipment and related resources. This typically includes policies and procedures for data storage, email and transmitting of sensitive information such as that which may be related to HIPPA laws.

 

I'll ask the IT department about this and will comply with their policies; however, for educational purposes, I'm still curious of any creative solutions?  Shoot it might give the IT department an idea.  The only thing I could think of would be to use an encrypted guest virtual machine that has the ability to transfer files via SCP



#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,766 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:50 PM

Posted 20 December 2015 - 07:37 PM

I know some state agency's only allow their employees to place HIPPA data on CD's and mail them via the US Postal Service to the designated recipient. Information stored on the network or local machine is protected by whatever IT Security Policies/Firewall they have implemented for that data. At the time of my retirement from the government a few years ago, to my knowledge encryption was not utilized. Technology changes fast so there may be newer methods I am not aware of.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users