I recently spent some time thinking about small business -specifically medical practices. Working for a company like Hewlett Packard I have the luxury of having some of the largest customers in the world in literally every vertical as my customers ...but what about those smaller SMB-sized companies? How does software security assurance (SSA) apply to them? How do they apply principles that I wax philosophically about here to their daily activities to decrease risk and avoid being victims?

Well, I still don't have all the answers, but I did find something that I think you need to know if you're operating a non-enterprise business ...more specifically a small to medium sized medical practice.

More: http://h30501.www3.hp.com/t5/Following-the-White-Rabbit-A/Small-Office-Big-Software-eHealth-Problems/ba-p/13209