Procyon participated in due diligence activities in support of the IT security assessment on a Proponent's submission regarding the information management systems proposed for the management of the BC Government's real property. Subsequently, a Procyon team of security analysts developed a detailed security threat risk assessment (STRA) on the final solution, which is comprised of 15 best-of-breed applications hosted in 8 different data centres (SaaS, PaaS, and service provider co-location facilities). Procyon has been retained to assist with implementing STRA recommendations and assessing further enhancements.
Procyon developed several Canada Health Infoway deliverables, including a privacy and security architecture document and security threat and risk assessments for the deployment of Yukon eHealth. This deployment included a new client registry, a new drug information system, and extended lab information system connectivity.
Procyon acted as the enterprise security lead for the BC Yukon Public Health Implementation Project (BCY-PHIP, aka Panorama), with lead responsibility for enterprise security, user management and federated authentication solutions. Conducted security threat risk assessments on several different Panorama environments (data migration, staging, and clinical deployment) and provided advice and guidance on network security requirements.
Procyon staff were members of the Interoperable Electronic Health Record and Provincial Lab Information System project (iEHR-PLIS) Technical Architecture team. For this project, Procyon had lead responsibility for enterprise security, identity and access management, communication security and user authentication services.
Security architecture design, threat modeling and security testing of web applications; security assessments, penetration tests and incident response (Top Producer Systems, Move Inc., Alberta Health Services, etc.)
Security conformance gap analysis against BC eHealth Security Conformance Standard and Security Threat Risk Assessment for deployment of various BC eHealth applications at Provincial Health Services Authority (PHSA) and Northern Health Authority (NHA).
Completed scanning and testing for provincial regulatory bodies. This work included internal and external scans of the network (including wireless networks) and their custom-built web-based applications.
Completed a risk-based ISO/IEC 27002 network security audit for BC Lottery Corporation (BCLC) including assessment of key security controls associated for a newly implemented network infrastructure in support of a new a province-wide Gaming Management System.