To attend this webcast, login to your SANS Account or create your Account.

Software-Defined Microsegmentation for Regulatory Compliance

  • Thursday, August 2nd, 2018 at 1:00 PM EDT (17:00:00 UTC)
  • Bill Parkinson & Jack Koons
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Unisys

You can now attend the webcast using your mobile device!


Running an information security program can be overwhelming. There are so many areas to address, from encryption to application security to disaster recovery to human nature. Adding to the complexity is compliance with regulatory requirements such as HIPAA, PCI DSS and the new EU GDPR to name a few. Scoping the systems that need to be regulated is one of the key strategies to reduce the cost and complexity of achieving and maintaining compliance.

Most of the regulatory requirements concerning protection of sensitive customer data require you to include not only the systems that directly store or process such data but also the systems that connect to regulated systems. If you are operating in flat networks, this requirement translates into "everything is in the scope of compliance audits".

Network segmentation is one of the must-have strategies to limit the scope, cost and complexity of compliance. The challenge in segmenting a network with static controls such as firewalls, VLANs, etc is the complexity of management and change. Access Control Lists (ACLs) and firewall rules can easily run into thousands of rules that have to be manually reconfigured every time there is a new application to be rolled out, or changes are introduced in regulations. The result is increased cost and complexity - the very challenge that you were trying to solve.

In this webcast, Unisys cybersecurity experts will introduce you to a new software-defined network microsegmentation that enables dynamic perimeters to isolate the critical assets without the cost and complexity of static controls. This approach reduces attack surface while also reducing audit scope, cost and management complexity. Microsegmentation is not segmentation. Segmentation is done for network optimization and performance, and should not be confused or conflated with security. Microsegmentation is a security concept first and foremost. Unisys experts will elaborate on microsegmentation concepts with particular emphasis on its use in support of compliance issues. They will then take you through illustrative examples of isolating and securing systems in the context of HIPAA, HITECH and PCI-DSS regulations.

Attendees of this session will:

* Gain understanding of key challenges in achieving and maintaining compliance

* Know the different types of network segmentation and their role - primary, secondary and microsegmentation, etc.

* Gain ccomprehensive understanding of software-defined network microsegmentation and how it can save you cost, effort and the frustration that static controls introduce

* Apply software-defined network microsegmentation to HIPAA, HITECH and PCI-DSS regulations using illustrative examples

Speaker Bios

Bill Parkinson

Bill Parkinson is responsible for identifying and implementing strategic innovations within the Unisys Healthcare and Life Sciences group. Bill has an in-depth understanding of the healthcare industry and the challenges organizations face in managing foundational changes in reimbursement, security, ever increasing regulatory requirements, and the need to redesign business processes in order to remain relevant. Bill focuses on improving patient outcomes, decreasing cost of care, and improving patient satisfaction through analytics and the appropriate application of IT and BPO solutions cost-effectively. Bill has experience with individual, group and government health plans, providers and Life Sciences organizations, working on operational and clinical analytics, pharmaceutical supply chain transparency, HIEs, tele-health, revenue management, medical device security and device to EHR integration. 


Prior to joining Unisys, Bill worked with Tech Mahindra, Virtusa and NIIT, leading their Insurance and Healthcare verticals. He has also held management roles with Truven, GE Healthcare and Allstate. Bill started his career as a medical underwriter.

Bill graduated from Northwestern University with a BA in healthcare economics.

Jack Koons

Jack Koons serves as technology evangelist and Chief Cybersecurity Strategist for Unisys. A retired 25-year career, full-spectrum Cyber Warfare Officer, whose globally-spanning operational assignments include service within the Intelligence, Special Operations, and Cyber communities. Jack is an accomplished author and lecturer on the topic of cyber warfare and security. A founding member of the emergent United States Department of Defense cyberspace effort, Jack is a Unisys global security solutions customer advocate - currently working with our commercial, public sector, and National Security information technology and security communities - to further develop, refine, and operationalize requirements and capabilities across the technology and security spectrum.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.