Barkly Endpoint Protection Platform Achieves Validation for HIPAA Compliance

BOSTON — Barkly, the company advancing endpoint security by combining the strongest, smartest protection with the simplest management, today announced that the Barkly Endpoint Protection Platform™ has been independently validated to assist healthcare organizations with compliance of the Health Insurance Portability and Accountability Act (HIPAA). The validation was provided in a report by Coalfire, a leading assessor for HIPAA, HITRUST, PCI, FedRAMP and other compliance standards across the finance, government, industry, and healthcare sectors.

Title II of HIPAA, an act passed in 1996, provides regulations and guidelines for maintaining the security and privacy of individually identifiable health information. According to this independent report, “The Barkly Endpoint Protection Platform™ demonstrated multiple capabilities including fileless attack blocking, executable blocking, and exploit blocking and performed attribute and behavioral analysis. The Barkly cloud-based software-as-a-service platform provides flexibility to manage endpoints, automatic upgrades for agents, alert configurations, manage override rules, and export incident data.” For this reason the report concludes, “All these capabilities make it an option for companies aiming to comply with HIPAA anti-malware requirements.”

According to a recent Ponemon Institute study over half of organizations said they experienced a successful endpoint attack in 2017, with healthcare endpoint attacks totaling $1.3 billion in cost annually. The study further revealed that fileless attacks were 10 times more likely to succeed than file-based attacks. “With fileless attacks on the rise, healthcare institutions are increasingly selecting Barkly to protect their endpoints. With this report, current and prospective customers can confidently leverage Barkly’s breakthrough technology to meet HIPAA requirements.” said Mike Duffy, CEO of Barkly. Barkly delivers the strongest, smartest protection against attacks, whether known or unknown, fileless or file-based with the Barkly Endpoint Protection Platform™. Barkly protects both endpoint devices and servers and is simple to manage through any desktop or mobile device.

Coalfire has determined that Barkly, with its uniquely strong, smart protection and simple management, supports compliance for the following four HIPAA requirements:

  • Protection from malicious software 164.308(a)(5)(ii)(B)
    • Procedures for guarding against, reporting, and detecting malicious software.
  • Security Incident Procedures 164.308(a)(6)(i)
    • Implement policies and procedures to address security incidents.
  • Response and Reporting -- R 164.308(a)(6)(ii)
    • Identify and respond to suspected or known security incidents; mitigate, to the extent practicable, harmful effects of security incidents that are known to the covered entity or business associate; and document security incidents and their outcomes.
  • Audit Controls - R 164.312(b)
  • Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.

In addition to HIPAA compliance, many hospitals and healthcare organizations leverage NIST FICIC as a security framework for their cybersecurity posture and to address current and future computer and information security challenges. Coalfire also validated that the Barkly Endpoint Protection Platform™ provides coverage for controls within the NIST FICIC “Detect” and “Respond” functions.

About Barkly

Barkly is advancing endpoint security by combining the strongest protection, smartest technology, with the simplest management. The Barkly Endpoint Protection Platform™ blocks attacks across all vectors and intents, including exploits, scripts, executables, and ransomware. Barkly is the only protection with visibility into all levels of the system, including the CPU and stays up-to-date through its continuous machine-learning engine that automatically converts threat intelligence into powerful protection through nightly training on malware and customer-specific goodware. Barkly requires no security expertise to setup and deploy and makes management simple through any desktop or mobile device. Barkly is independently certified for antivirus replacement, HIPAA, PCI DSS & NIST by Coalfire and AV-TEST. Barkly is formed by an elite team of security and SaaS experts from IBM, Cisco and Intel, and is backed by investors NEA and Sigma Prime. Learn more by visiting us at or follow us on Twitter @BarklyProtects.


Maya Pattison, Director of PR
617.488.9400 |