The need for a new managed detection tool
Until 2022, the University Hospital had an anti-virus system to protect its digital systems, but due to a lack of internal resources, it operated automatically, with little human supervision.
The hospital therefore needed to call on a managed cybersecurity service, while strengthening its threat detection capability with next-generation tools such as EDR.
“We wanted to invest in new cyber security equipment and have a service that would monitor our digital equipment 24/7, provide reporting in the event of an alert and advise us in the event of a security event. No-one in-house had mastered EDR technology, so we needed to rely on external teams who knew the technology well, and who were able to advise us on the best tool to protect our information system.”
Jean-Sylvain Chavanne, CISO
Specific needs of the hospital sector
The hospital needed an EDR that met the specific needs of the hospital sector.
For example, the hospital operates very critical servers that provide the interface between applications (EAI – Enterprise Application Integration – and EDI – Electronic Data Interchange) with limited resources (such as RAM). For these servers, it was therefore essential that the EDR consumed few resources without affecting its operation.
In addition, the EDR had to adapt to the existing architecture of the hospital. The workstations and servers are equipped with heterogeneous operating systems, some of which are old and yet critical.
Lastly, the EDR had to guarantee the smooth operation of critical business applications whatever the circumstances, such as biomedical equipment managing medical imaging or medical biology. Indeed, if these systems are blocked, this can have a major impact on patient care.