Healthcare organizations choose ForeScout CounterACT for strong security

ForeScout helps healthcare organizations protect confidential data, demonstrate compliance with regulations, and prepare for IT audits in a cost-effective, efficient manner.

The Challenge

ForeScout understands the network security challenges you face in the healthcare industry. Protecting the confidentiality of patient data is of primary importance. Healthcare organizations face these challenges:

Business Challenges
  • Preserve customer trust by protecting data privacy
  • Demonstrate regulatory and security policy compliance
  • Improve security posture while reducing total cost of ownership
  • Expand network access to doctors, clinicians, research organizations, and contractors to accelerate operational efficiency
Technical Challenges
  • Control access to confidential data
  • Measure effectiveness of security controls
  • Comply with regulations such as HIPAA
  • Guard against targeted malware threats

Traditional network security focuses on blocking external attacks with firewalls and intrusion prevention systems (IPS). But today, almost all serious data loss events occur from the inside. Can zero-day attacks and advanced persistent threats scan your network to glean information? Can rogue wireless access points extend your network without your knowledge?

ForeScout’s Solution

Numerous healthcare institutions use ForeScout CounterACT to protect their networks and sensitive data, measure compliance with security policies, and save money.

ForeScout CounterACT is an automated security control platform that delivers real-time visibility and control of all devices on your network. CounterACT provides network access control, endpoint compliance, handheld device security and threat control, all in one automated system, enabling innovative patient care without compromising security.

ForeScout CounterACT reduces the risk of data breaches and malware attacks that would otherwise put your business at risk. And CounterACT helps you monitor and improve the effectiveness of your security policies, and produce automated reports to demonstrate compliance with industry regulations such as HIPAA.


ForeScout CounterACT is an automated security control platform that delivers real-time visibility and control of all devices on your network. CounterACT provides network access control,  endpoint compliance,  handheld device security and  threat control, all in one automated system.

Complete Network Visibility
  • Automatically detect every connected system, user, application and peripheral device
  • Monitor all devices before and after they connect to your network, continuously
  • Detect hidden infrastructure such as unauthorized wiring hubs and rogue wireless access points.
  • Gain deep visibility into connected systems – type of device, operating system, patch level, location, applications, and user name.
Network Access Control
  • Quickly create and enforce access control policies with a range of alerting, remediation and enforcement options
  • Disable rogue wireless access points
  • Block unknown computers from accessing sensitive portions of your network.
  • Grant network access based on the user’s identity and the roles that you have defined in your directory.
Data Security
  • Apply network access policies that allow only authorized users to access the parts of your network with sensitive data.
  • Detect and disable rogue USB devices to prevent loss of financial data
  • Control who uses P2P applications, smart phones, etc.
  • Ensure that every endpoint is compliant with your security policies – antivirus, DLP, encryption, patch level, configuration, etc.
  • Identify and fix non-compliant devices without user involvement
  • Measure compliance with internal policies, helping you prove compliance with regulations like HIPAA and PCI DSS.
  • Create on-demand or scheduled reports for management and audit
Threat control
  • All ForeScout products include ActiveResponse™ technology which blocks both known and unknown attacks with 100% accuracy. This unique technology does not require signature updates or other forms of maintenance, so it requires zero maintenance. And since ActiveResponse does not suffer from false positives, you can confidently activate ForeScout’s threat prevention system inside your network in full blocking mode.   ForeScout products provided zero-day protection against Conficker and Zeus.
ControlFabric Integration
  • All of the information generated by ForeScout CounterACT can be exported to your existing GRC or reporting systems. Integrations are available for most leading SIEM systems, and end-users can build custom integrations with the Open Integration Module.
Low Cost of Ownership
  • Lowest TCO of any NAC solution on the market
  • Vendor-neutral, infrastructure-independence eliminates need for expensive upgrades and prevents vendor lock-in
  • Maximize value of existing security products and functions by automatically re-enabling any user-disabled endpoint security tools


ForeScout CounterACT’s unique security automation gives you an unbeatable combination of improved security, cost savings, and productivity gains.

Improve security
  • Reduce risk of infection by ensuring that endpoints are properly configured, antivirus is properly running and updated, vulnerabilities are patched, and the latest versions of software is installed.
  • Reduce risk of data loss by ensuring that encryption and DLP agents are running properly. Ensure that users are not able to run unauthorized applications or peripheral devices (e.g. USB memory sticks).
  • Reduce risk of the unknown. Detect and monitor use of unmanaged devices such as smartphones, tablets, USB interfaces, and printers.
Save money
  • Reduce IT support costs.  Large financial services institutions have reported savings of approximately $1 million per year with ForeScout CounterACT.
  • Avoid penalties of lost data. A secure network, with secure endpoints, is less likely to lose data. Avoid the regulatory fines and devastating impact to your corporate reputation.
  • Extend the life of your firewalls. ForeScout’s ActiveResponse™ IPS technology is extremely scalable and requires very little processor overhead. Installing CounterACT Edge in front of your traditional signature-based IPS systems and firewalls (which are very processor-intensive) will reduce the load on these systems and extend their useful lives.
Save time
  • ForeScout’s advanced automation operates without the need for manual intervention by IT administrators or users.
  • Realtime data and reports show you problems on your network right now, letting you take action while the problem still exists.
  • By improving your endpoint security posture, you will suffer fewer infections and avoid time-consuming drills to repair infected workstations.
Avoid disruption
  • Unlike simplistic products that disrupt users with heavy-handed security controls, ForeScout CounterACT offers a full spectrum of enforcement actions ranging from gentle (notifications) to assertive (update software or kill processes). The range of enforcement actions helps you be more successful by working with users, not against them.
Low cost of ownership
  • Unlike traditional agent-based security systems, ForeScout CounterACT is a simple appliance that installs on your network.   It requires no software installation.   It can be deployed and functioning in one afternoon.
  • Lowest TCO of any NAC solution
  • Vendor-neutral, infrastructure-independence eliminates need for expensive upgrades and prevents vendor lock-in
Gain 100% coverage
  • Unlike traditional agent-based security systems, ForeScout CounterACT allows you to enforce security policies on every device on your network–known and unknown, managed and unmanaged, corporate and personal.
100% compatible
  • ForeScout CounterACT works with what you have–all your existing switches, routers, firewalls, endpoints, patch management systems, antivirus systems, directories, ticketing systems. We take what you have and make it better.
Accelerate results.
  • ForeScout CounterACT provides useful results on Day 1 by giving you visibility to problems on your network. The built-in knowledge base helps you configure security policies quickly and accurately.

Product Tours

Product Screenshots

Click image to enlarge.

Windows PC inventory with missing updates

ForeScout CounterACT shows you in realtime which PCs on your network contain vulnerabilities.

Virtual Client-unauthorized changes

ForeScout CounterACT can identify unauthorized changes to PC configurations or software.

Unauthorized processes

ForeScout CounterACT shows you which PCs are running unauthorized processes.

Unapproved Network WiFi device

ForeScout CounterACT identifies rogue WiFi devices.

Kill peer-to-peer user experience

ForeScout CounterACT lets you kill unauthorized software, keeping endpoint systems in compliance with your security policies.