Here you can enroll in our various IT and cybersecurity training sessions designed to help you and your team stay ahead of the curve in today's fast-paced digital world.
C. Evan Solutions
Teachings
Cybersecurity Basics
Learn the fundamentals of cybersecurity and how to protect your business from common threats. This class covers basic principles, best practices, and practical tips for maintaining a secure IT environment.
Planning and Teaching
We help you understand basic cybersecurity concepts
Action
Our team will identify and mitigate common threats
Threat Mitigation and Preventative Practices
Implement best practices for securing your systems
CMR 201-17:Cybersecurity and Data Protection for Small Businesses
CMR 201-17 is an essential training course designed for small business owners and IT professionals. This class focuses on the regulations and best practices necessary to comply with the Massachusetts Data Security Regulations (201 CMR 17.00). Learn how to protect your business from data breaches, ensure compliance, and safeguard sensitive information.
The Massachusetts Data Security Regulations (201 CMR 17.00) are designed for:
Businesses handling the personal information of Massachusetts residents. Failure to comply can result in significant legal penalties, including fines and sanctions.
Operational Efficiency
The regulations encourage businesses to adopt best practices in data management and security. This can lead to improved operational efficiency, as secure systems and processes are often more reliable and easier to manage.
Written Information Security Program (WISP)
We work with you to develop, implement, and maintain a comprehensive WISP that outlines how the business will protect information according to CMR201-17.
Data
Case Studies
Beth Israel Deaconess Medical Center (BIDMC)
Beth Israel Deaconess Medical Center experienced a data breach where an employee’s laptop, containing unencrypted patient data, was stolen. This incident highlighted the importance of complying with data protection regulations like CMR 201-17.
Response and Compliance: Following the breach, BIDMC had to notify the affected patients, the Massachusetts Attorney General, and the Office for Civil Rights. The medical center also implemented stricter data encryption measures and enhanced their information security policies to prevent future breaches. This case underscores the critical need for comprehensive security measures and compliance with regulations to protect sensitive information (KLR) (Mass.gov).
TJX Companies Inc.
The retail giant TJX, which owns brands like T.J. Maxx and Marshalls, suffered a massive data breach affecting millions of credit and debit card holders. This breach occurred due to weak encryption and outdated security protocols.
Response and Compliance: In the wake of the breach, TJX was required to comply with 201 CMR 17.00 by enhancing their encryption standards, implementing more robust access controls, and regularly auditing their security measures. The breach cost TJX millions of dollars in fines, settlements, and security upgrades, emphasizing the importance of proactive compliance with data protection regulations (Imprivata).
UMass Memorial Health Care
UMass Memorial Health Care faced a significant data breach involving the personal information of approximately 15,000 patients due to a phishing attack on employee email accounts.
Response and Compliance: UMass Memorial Health Care responded by notifying affected individuals and regulatory bodies, and by strengthening their cybersecurity protocols. They also enhanced employee training programs to prevent future phishing attacks and ensure compliance with 201 CMR 17.00, which mandates comprehensive information security programs and incident response plans (Adler Pollock & Sheehan P.C.) (LogRhythm).
Offices
265 Franklin St Suite 1702,
Boston, MA 02110
132 Central St,
Foxborough, MA 02035
Hours
M-F: 8am – 10pm
S-S: 9am – 6pm
Emergancy Service 24/7
Call Us
(508) 468-8329
