Idaho Department of Health and Welfare
SeNet provided the following services to Idaho Department of Health and Welfare (IDHW):
- Security Standards Assessment
- External and Internal Network Assessment
- Web Application Assessment
SeNet conducted a security standards assessment for the health care exchange system to ensure it complied with the security standards requirement set by the Center for Medicaid and Medicare Services (CMS). In addition to reviewing documentation provided by IDHW, SeNet used the methodology of Interview, Examine, and Test to evaluate compliance with the Minimum Acceptable Risk Standards for Exchanges (MARS-E).
SeNet also performed an external and internal vulnerability assessment on the systems hosting the health care exchange system. The external scope consisted of one Class C network and the internal scope consisted of 15 Class B networks. Internal testing took place on-site at IDHW’s headquarters in Boise, ID.
A web application assessment was performed on two of IDHW’s web applications. Burp Suite and Netsparker along with manual tests were used to identify security vulnerabilities.
At the conclusion of the project, SeNet compiled and delivered three separate reports (one for each assessment) that detailed the methodology used during testing, vulnerabilities identified as well as their severity level, and recommendations to remediate the vulnerabilities found.