Advancing Compliance & Security with Managed Detection and Response for BestSelf

Overview

BestSelf Behavioral Health is the largest community-focused behavioral health organization in Western New York, providing trauma-informed care across 20+ locations. The organization manages substantial volumes of Electronic Protected Health Information (ePHI) and Medicaid Confidential Data (MCD) under New York State’s Health Home program, requiring strict adherence to the NYS Department of Health (DOH) Office of Health Insurance Programs (OHIP) security guidelines.

To strengthen data protection and meet growing regulatory expectations, BestSelf modernized its cybersecurity posture by combining security consulting guidance with advanced Managed Detection and Response (MDR) capabilities from a specialized external partner. This unified approach allowed the organization to establish a strong, enterprise-wide foundation for compliance and threat defense.

Situation

Serving more than 2,400 Health Home patients, BestSelf needed consistent proof that Medicaid Confidential Data was securely protected. New DOH requirements introduced stringent obligations, including:

• A comprehensive System Security Plan (SSP)
• Independent, third-party security reviews
• A complete security assessment aligned to recognized frameworks such as NIST

To meet these expectations, BestSelf required:

• Continuous vulnerability monitoring
• Real-time detection of threats
• A fully operational 24×7 security operations model
• Scalable response mechanisms for emerging risks

Although the internal IT team was experienced, maintaining round-the-clock threat monitoring and coordinated response exceeded available internal resources. A more mature, structured, and continuous security program was needed.

Approach

The engagement began with a detailed mapping of BestSelf’s data flows, from State-originated inputs to internal system distribution. This analysis clarified risk concentrations and highlighted where additional security boundaries were required.

Leadership elected to extend the updated security controls across the entire organization rather than limiting enhancements to Health Home–specific environments. This eliminated policy fragmentation and ensured consistent protection everywhere sensitive data was processed.

After assessing internal capabilities, it became clear that 24/7 monitoring and advanced incident response required external operational support. A structured evaluation was conducted to define the required SOC capabilities and determine the right MDR provider to fulfill those needs.

Solution

A dual-layer security model was implemented, strengthening internal governance while enabling continuous monitoring and response.

24x7x365 Monitoring & Response

Continuous endpoint event handling, threat triage, and coordinated incident response ensured complete coverage at all hours.

Daily Vulnerability Assessments

Dynamic dashboards and reports provided continuous awareness of vulnerabilities and remediation progress.

Quarterly Security Reviews

Audit-ready reporting, program metrics, and prioritized action plans helped maintain alignment with State and federal requirements.

SOAR-Driven Automation

Automated playbooks accelerated response to known malicious behaviors and reduced manual effort.

Integrated Log & Event Management

Centralized log aggregation from systems, workstations, servers, and firewalls increased visibility and improved investigative depth.

Together, these capabilities provided the operational maturity and compliance alignment required by NYS DOH mandates.

Benefits

With strengthened governance and advanced MDR support, BestSelf significantly enhanced its cyber readiness and compliance posture.

Key Outcomes

• Continuous 24/7 threat detection and faster incident response
• Aligned controls with NYS DOH and NIST-referenced frameworks
• Real-time threat visibility through centralized dashboards enriched with intelligence
• Accelerated response cycles through automated workflows
• Quarterly executive-level reviews with clear prioritization
• Immediate alerts for high-risk vulnerabilities, reducing exposure
• A resilient operating model that supported remote work needs throughout the COVID-19 period

Today, BestSelf operates with a cohesive, mature security framework that protects sensitive health data while adapting to evolving regulatory requirements. A long-term cybersecurity roadmap continues to guide ongoing improvements.

This solution was delivered in partnership with ProArch.