Banking-Caliber Application Security

As cyber-attacks have increased enough to make headlines on an almost daily basis, Beacon has ensured that our application suite maintains banking-caliber security for our clients’ operations. The SpyGlass and HIPAA Director web application security have been both network penetration and application security tested and possesses a thorough certification by industry-recognized vulnerability management solution providers, BreachLock and Plynt, the application security arm of Paladion, a Deloitte subsidiary. Banks cannot achieve higher certification clearance from these organizations.

Roles-Based Security Model

Our rules- and roles-based system allows your security administrator to control the full range of user access to the application and transaction features. Your business users can easily manage plan setup for increased security and secure workflows without the need of a programmer. SpyGlass’s role-based security filters all access to screens, data, and commands according to the appropriate authorization level of the user or system connecting and is controlled entirely within the application’s web-interface.

Business control limits are embedded within each role. For example, claim examiners can have individual authorization limits, expedite limits, and audit thresholds for the amount and/or the number of claims placed into the audit queue. These unlimited roles can be set up with varying levels of access for certain sections or functions—no access, read-only, or full access.

Personalized icons and passphrases are located on login pages to decrease the chance of phishing, lock out potential hacking attempts, even isolate honeypot techniques to identify malicious access. Additionally, a range of password requirements (length, stringency, reuse, expiration, and the number of missed attempts) are set per role, each under your security administrator’s discretion. Multiple login attempts and failures can instantly alert administrators and lock down a user account. All user sessions can even be set to expire after a set amount of time, to avoid having a screen accessed by an unauthorized user after the authorized user has left their desk.

Two-Factor Authentication

In addition to the wide range of password requirements and strong token integration for single sign-on options, SpyGlass has been enhanced to include two-factor authentication (2FA) for users logging into the system. 2FA adds an additional layer of security that ensures the users attempting to gain access to the application are who they say they are. This helps to protect against stolen passwords, phishing attempts, and brute-force attacks. To complete user sign-in after the correct username and password have been entered, SpyGlass generates an automated email or text message, based on the user’s preference, with a time-based, one-time verification code and registers the device for access.

Biometric Authentication

For even more stringent authentication requirements, Beacon has implemented an additional layer of biometric authentication with fingerprint scanner support. Our biometric authentication offers a solution to all the inadequacies that a solely password-based system suffers from. These additional login capabilities can be added to the core user-name and password combination or used in its place. Lock down user access with some of the highest-level biometric security available.

Automated Encryption

Secure, automated EDI transactions are also an integral part of the total security picture. Beacon’s HIPAA Director, included with SpyGlass, automates the HIPAA required and general-purpose managed file transfers and real-time API integrations that your business needs to gain competitive advantage. Our all-in-one EDI gateway and scheduler supports multiple encryption protocols, compression, signing, and operational notifications.