Case Study: University of Rochester Medical Center achieves comprehensive, agentless visibility and non-disruptive control of personal and medical devices with ForeScout CounterACT

University of Rochester Medical Center Expands Oversight and Control Over Personally-owned and Medical Devices with ForeScout CounterACT

University of Rochester Medical Center (URMC), a major academic medical center with about 15,000 staff and visiting clinicians, faced a surge of personally owned and medical devices connecting to its network. URMC needed full visibility and granular control over these endpoints—many of which are FDA-regulated and cannot run agents—while ensuring zero disruption to time-critical clinical systems and meeting HIPAA/HITECH compliance requirements.

URMC deployed ForeScout CounterACT’s agentless network access control and virtual firewall technology to fingerprint, group and enforce policy on every device, integrate with SCCM/Sophos and share intelligence via ControlFabric. The result was unobtrusive, granular enforcement and automatic remediation that preserved critical device availability, reduced manual IT effort, improved threat detection and isolation, and strengthened HIPAA compliance.

University of Rochester Medical Center

Michael Pinch

Chief Information Security Officer