February 6, 2016

Press Release 1/21/16

The American Hospital Association Endorses Information Technology Compliance and Managed Security Services from IP Services

IP Services’ AHA Endorsed solution, powered by SignaCert Integrity, helps hospitals protect patient health data security while maintaining IT system availability and reliability


CHICAGO, IL — January 26, 2016 — The American Hospital Association (AHA) today announced it has exclusively endorsed Information Technology Compliance and Managed Security Services from IP Services. Following a proprietary due diligence process, AHA Solutions, Inc., a subsidiary of the AHA, awards the AHA Endorsement to products and services that help member hospitals and health care organizations achieve operational excellence.

According to the 17th Annual Healthcare’s Most Wired survey by the AHA’s Health Forum and College of Healthcare Information Management Executives, health data security is one of the top priorities of the nation’s hospitals. Hospitals are striving to apply strong privacy and security measures to protect patient information.

IP Services’ Information Technology Compliance and Managed Security Services help hospitals protect patient data by supporting proactive, enterprise-wide integrity verification and security incident and event management, while also helping to reduce IT maintenance time, effort and costs.

The solution’s integrity verification engine for servers and network devices continuously detects in IT systems deviations from a “correct state.” Automatic determination of incorrect system configurations and changes helps organizations detect potential security breaches and maintain business performance and Health Insurance Portability and Accountability Act (HIPAA) compliance. The integrity verification engine issues only actionable alerts so IT personnel are not disrupted by “noise.” It can scan for security breaches up to several times a day — reducing mean time to detection from an industry average of nine months to the same day or less.

To ensure highly secure and high-availability systems, the solution’s security incident and event management services provide event correlation, compliance reporting and recommended remediation steps, and ongoing systems management such as risk analysis and management. Its TotalControl™ system applies controls for managing IT services based on globally recognized best practice processes and methodologies: the IT Infrastructure Library and the VisibleOps Handbook, which IP Services executives authored based on expertise developed through participation in the IT Process Institute, of which IP Services is a founding member.

“IP Services’ AHA Endorsed compliance and security services stand apart because they detect configuration changes that might suggest breaches, but also system vulnerabilities across the entire enterprise — a proactive approach to security,” said Tim Steffl, chief operating & development officer, AHA Solutions. “Additionally, the services demonstrate strong results, both in their dramatic reduction in mean time to detection, and in the fact that IP Services clients remain uncompromised and safe.”

“We are excited to partner with AHA Solutions by delivering our proven and unique IT managed services methodologies, which will mitigate the security risks and vulnerabilities hospitals face relative to HIPAA compliance and their overall security posture,” said Scott Alldridge, CEO of IP Services.


IT complexity, scale, and rate of change make it extremely difficult to understand the true state of IT infrastructure at any point in time. Powered by patented technology such as the Global Trust Repository (GTR), a file and application whitelist database of unprecedented breadth and depth, SignaCert Integrity continuously compares IT elements against authenticated applications, gold images, and trusted standards. This ongoing appraisal allows for early surgical identification of issues that threaten infrastructure integrity (availability, security, compliance) and reduces the amount of unplanned work typically caused by delayed problem discovery.