Download PDF
Rapid7 > Case Studies > AMN Healthcare's Digital Transformation: A Cybersecurity Case Study with Rapid7
Rapid7 Logo

AMN Healthcare's Digital Transformation: A Cybersecurity Case Study with Rapid7

Technology Category
  • Analytics & Modeling - Machine Learning
  • Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
  • Healthcare & Hospitals
  • National Security & Defense
Applicable Functions
  • Procurement
  • Quality Assurance
Use Cases
  • Cybersecurity
  • Tamper Detection
Services
  • Cybersecurity Services
  • System Integration
The Challenge
AMN Healthcare, a leading provider of total talent solutions for healthcare organizations, faced a significant challenge in integrating the cybersecurity systems of 28 recently acquired organizations. These organizations varied in size, from startups with 30-50 employees to established organizations with 2,500 employees, each with their own offices, policies, and frameworks. AMN needed a unified, future-proof security platform to integrate these organizations into their corporate structure, ensuring that every organization was following a singular security standard for detection and response. The challenge was further complicated by the shift to remote work due to COVID-19, which transformed each employee's home into a regional office, creating a lack of visibility and control over home networks.
About The Customer
AMN Healthcare is a leading provider of total talent solutions for healthcare organizations across the United States. The company offers access to a comprehensive network of quality healthcare professionals through its innovative recruitment strategies and a wide range of career opportunities. AMN Healthcare serves a diverse clientele, including acute-care hospitals, community health centers and clinics, physician practice groups, retail and urgent care centers, home health facilities, and schools. The company has recently expanded by acquiring 28 organizations of varying sizes, each with its own unique set of cybersecurity needs and challenges.
The Solution
AMN Healthcare partnered with Rapid7 to implement a next-gen monitoring solution, Managed Detection and Response (MDR). This solution was chosen for its ability to manage, detect, and respond to threats proactively, even in thousands of work-from-home locations. Rapid7 MDR not only collects and sends logs but actively looks for threats and intercepts them immediately. AMN also adopted other Rapid7 products to address different security gaps, including InsightVM for vulnerability risk management, InsightAppSec for DAST, InsightConnect for key automations, and InsightCloudSec for cloud risk and compliance. The integration of these tools into a single platform simplified the security management process, providing economies of scale, easier support, and easier integration. The single agent approach of Rapid7 reduced the lead time between the exposure of a vulnerability and the vulnerability becoming an active exploit from days to just hours.
Operational Impact
  • The partnership with Rapid7 has transformed AMN Healthcare's cybersecurity posture. Rapid7's solutions have not only helped AMN integrate the cybersecurity systems of its newly acquired organizations but also enabled the company to proactively monitor and respond to threats in a distributed work environment. The integration of Rapid7's tools into a single platform has simplified the security management process, providing economies of scale, easier support, and easier integration. The single agent approach of Rapid7 has also reduced the lead time between the exposure of a vulnerability and the vulnerability becoming an active exploit. Today, Rapid7 is considered an extension of AMN Healthcare’s internal security team, with regular communication and a shared objective of maintaining robust cybersecurity.
Quantitative Benefit
  • Of the 1,236 investigations by Rapid7 for AMN Healthcare in 2022, 90% were addressed within 30-60 minutes.
  • 100% of the machines that had Rapid7 deployed on them were effective in dealing with a threat.
  • The single agent approach of Rapid7 reduced the lead time between the exposure of a vulnerability and the vulnerability becoming an active exploit from days to just hours.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.