Network Management: how leaders can secure the network and minimize impact on attacks

Looking at HICP requirements for network management

  • Network segmentation (S & M)
  • Physical security & guest access (S & M)
  • Intrusion Prevention System (S & M)
  • Network Profiles and Firewalls (M)
  • Web Proxy Protection (M)
  • Monitoring for Command and Control (C2) traffic
  • Anomalous Network Monitoring and Analytics
  • Network Based Sandboxing / Malware Execution
  • Network Access Control

Product selection criteria

Looking at Cisco Meraki MX68W with Advanced Security license

  • Network Segmentation: Segmentation by VLAN, Group policy per VLAN, Layer 3, 7, and geography-based firewall rules.
  • Guest Access: Guest SSID and firewall rules
  • Web Proxy Protection: Content and web search filtering, YouTube Content Restriction, and Cisco Advanced Malware Protection (AMP).
  • Intrusion Prevention: Cisco SNORT
  • NAC: Splash page, 802.1x with access policies per VLAN to control network access. However, it does not support evaluating anti-virus, patch level, etc.
  • DNS Protection: As an additional feature, it supports Cisco Umbrella integration for DNS filtering (licensed separately).
  • Sandboxing: Cisco Umbrella’s Secure Internet Gateway (SIG) Essentials package, 500 samples/day [5]

Looking at the cost for Meraki MX68W & Advanced Security subscription license

Projected cost for adopting HICP practices so far for 1 FTE Physician + 3 support staff: $ 5,296 (1st year) & $2,272 (subsequent years)






Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aldo Febro

Aldo Febro

I help healthcare leaders designing digital health & cybersecurity solutions