For Compliance, Security is Critical
Updated: Feb 12
By now you’ve heard it from various sources that Microsoft will be ending its support for Windows 7 and other business products. That said, if you are using any of these products, it will be prudent to upgrade to the newest Microsoft versions. And, if you're dealing with regulatory compliance concerns, the need to upgrade is even more critical.
Due to compliance regulations, running unsupported software subjects your organization to vulnerabilities and poses a significant security risk to your business. Without security patches, vulnerabilities on those systems can no longer be fixed. Additionally, running unsupported software can also result in compliance violations.
IT compliance regulation requires businesses to take reasonable steps to protect the security of information and the systems that are used to store that information. Unsupported systems must be considered with end-of-life software so that security, compatibility and compliance remain intact.
If you're dealing with regulatory compliance concerns,
the need to upgrade is even more critical.
For HIPAA compliance specifically, under the HIPAA Security Rule 45 C.F.R. § 164.308 (a)(5)(ii)(B), organizations must implement procedures for detecting, guarding against, and reporting malicious software. So, you will not meet HIPAA compliance requirements if your company is still using software that Microsoft no longer supports.
Even with other security measures in place, never assume that unsupported systems are safe. It’s been reported that Windows 7 is twice as likely as Windows 10 to experience a security breach. To continue to operate in a secure environment and avoid compliance violations, you’ll need to upgrade your systems.
As a reminder: the following is a list of end-of-life support products and their respective expiration dates:
Desktop Software end-of-support:
Windows 7 - January 14, 2020 Office 2010 - October 13, 2020
Server Software end-of-support:
SQL Server 2008 - July 9, 2019
Windows Server 2008 and 2008R2 - January 14, 2020 Exchange Server 2010 - January 14, 2020
Concerned about HIPAA compliance and Microsoft end-of-life support? ProActive Information Management can assist you with upgrade planning and scheduling that meets your needs. We will help you to stay in compliance and implement solutions for a smooth transition. Contact us today!