The ConnXion Volume 02, Issue 7
In today’s digital age, data security is paramount. At WLT Software, we understand the critical importance of safeguarding sensitive information in the claims and benefits administration landscape. Whether you’re an employer group, a TPA, or any other entity navigating the self-funded benefits space, protecting your data is non-negotiable. Our commitment to robust security measures ensures that your data remains uncompromised and your peace of mind intact.
Unraveling the Layers of Security
WLT Software has built its reputation on delivering cutting-edge claims and benefits administration technology, but it’s our unparalleled dedication to data security that truly sets us apart. We employ a multi-faceted approach to protect your information, encompassing advanced encryption, rigorous access controls, proactive monitoring systems, and comprehensive response plans.
Advanced Encryption: The First Line of Defense
Encryption is the cornerstone of our security strategy. We utilize state-of-the-art encryption technologies to ensure that all data, both at rest and in transit, is protected from unauthorized access. Data is stored in the Oracle Cloud solution, and nightly backups are moved to secure, offsite locations, creating an impenetrable barrier against cyber threats.
Rigorous Access Controls: Fortifying the Gateway
Access control is critical in preventing unauthorized access to sensitive information. WLT Software employs stringent access control mechanisms, ensuring that only authorized personnel can access specific data. Our robust authentication protocols add an extra layer of security, verifying user identities before granting access.
Risk Management: Anticipating and Mitigating Threats
Formally documented policies and procedures govern our risk management practices. These policies outline formal risk management practices to gain an accurate and thorough understanding of the potential risks to and vulnerabilities of the confidentiality, integrity, availability, and safety of information and information systems.
Proactive Monitoring: Vigilant Oversight
Continuous monitoring is essential in detecting and mitigating potential security threats before they escalate. Our proactive monitoring systems track and analyze network activity in real-time, allowing us to swiftly identify and respond to suspicious behavior. This vigilant oversight ensures that any anomalies are addressed immediately, maintaining the integrity of your data. Internal controls are reviewed on at least an annual basis. The effectiveness of internal controls is monitored to ensure that relevant issues or nonconformities to internal controls are accurately identified, documented, and tracked through remediation.
WLT’s management team meets bi-weekly to review any significant incidents related to security. WLT’s security team also holds periodic meetings to ensure issues are promptly reviewed and actively tracked through resolution. We use a variety of specialized tools and capabilities deployed in the Oracle-hosted infrastructure to monitor system capacity and availability, detect and track security events, and act on them as quickly and efficiently as possible.
MediClaims: Security at the Core
Central to our security framework is MediClaims, our flagship product designed for superior claims and benefits administration. MediClaims integrates seamlessly with our security protocols, offering a secure, scalable, and efficient solution for managing claims, while utilizing the award-winning Oracle database for storage. The databases are encrypted with advanced techniques to ensure your data’s protection, and MediClaims adds additional layers of security by customizing access to programs through multiple roles in the company.
System security reports help authorized personnel identify every program a user can access, ensuring your configuration has the desired results. The platform’s robust architecture ensures that data integrity and security are maintained at every stage of the claims process, providing our clients with the assurance that their information is protected by the highest security standards.
Incident Response Plan: Prepared for the Unexpected
WLT Software has a documented Incident Response Plan (IRP) which establishes the procedures to be undertaken in response to information security incidents. The IRP is communicated to appropriate personnel and includes:
- Incident identification and classification (events, vulnerabilities, incidents, unknowns)
- Roles, responsibilities, and communication protocols
- Incident reporting procedures
- Containment and eradication strategies
- Postmortem analysis and post-recovery reporting
The IRP is updated annually, or more frequently, based on incident outcomes. In years without security incidents, WLT conducts tests of the IRP and the ability of the Incident Response Team to execute the plan, documenting test procedures and results. Gaps, areas of improvement, and lessons learned are utilized to modify the plan as needed.
Business Continuity Plan: Ensuring Operational Resilience
WLT Software has documented and implemented a business continuity plan to be activated and followed if damage and/or disruption to a system environment is of sufficient magnitude to warrant activation of the plan. The plan documents preparations and actions required for recovering essential corporate and IT operations, as well as maintaining business operations. Production data is cross-replicated on the cloud and onsite to protect sensitive data from loss in the event of a system failure.
Your Security is Our Priority
At WLT Software, data security is at the heart of everything we do. Our comprehensive security protocols are designed to shield your information from threats, ensuring that your data remains secure and your operations uninterrupted. For more details on our security measures, visit https://wltsoftware.com/security/.
Stay secure, stay confident – with WLT Software.