- Resources
- /
- How Greenlight Tek Automated Trust and Compliance for Healthcare Providers
How Greenlight Tek Automated Trust and Compliance for Healthcare Providers
Shield, Bracket·Case Study·5 min read
At a Glance
Challenge
Greenlight Tek identified a critical gap in their clients’ defenses. While the rest of the infrastructure was already secured through a Zero Trust approach, email still relied on clients making the right call. Healthcare workers were being forced to act as security filters—deciding which messages to trust and when to encrypt—while facing a new wave of AI-driven spear phishing, business email compromise (BEC) attempts, and growing compliance demands. This traditional approach to email security was driving up support costs and leaving sensitive healthcare data vulnerable.
Solution
Greenlight Tek standardized on Mailprotector to reduce the operational burden placed on both healthcare staff and the technicians supporting them.
- Shield focuses on whether a sender belongs in a user’s established circle of trust, so suspicious and unwanted email fades away naturally.
- Bracket simplified encryption to a subject-line command, making secure outbound communication as easy as sending a normal email.
- Email Traffic Control connected the two through automated workflows that secured protected health information (PHI) without requiring additional action from staff.
The Mission
Greenlight Tek supports healthcare providers across South Florida, including nursing homes, assisted living facilities, drug detox centers, and hospitals.
For President and CEO Carmi Gross, the goal is straightforward: deliver strong security without adding friction for the people delivering care.
“I focus on security so my clients can focus on their patients,” Gross says.
But generative AI has fundamentally changed the economics of deception. Attackers can now produce highly convincing phishing and impersonation emails at a speed and sophistication end users can’t reasonably evaluate.
In one recent case, a client was targeted in a six-figure BEC attempt involving fraudulent ACH instructions that appeared completely legitimate. As malicious email continued slipping through traditional defenses, Greenlight Tek’s technicians lost hours per week to password and 2FA resets, mailbox rule cleanup, and investigating false positives and negatives.
Extending Zero Trust to Email
Greenlight Tek had already embraced a Zero Trust approach through ThreatLocker to secure critical infrastructure. Gross strongly believed security should block suspicious activity by default instead of relying on users to make the right decision every time.
“I’d rather get 10 calls a day asking why something got blocked than one call that someone just transferred $100,000 to the wrong account,” Gross says.
Email remained one of the last areas where security still depended heavily on users recognizing threats correctly.
Then, at Zero Trust World 2025, Greenlight Tek discovered Shield—the first zero trust email security platform that aligned with the same principles already shaping the rest of their security stack.
Shield resets trust to zero and focuses on the email users actually want to receive so the rest naturally falls away.
Shortly after deployment, Gross spotted a QuickBooks lookalike email that Shield had sent to junk. To an untrained eye, it would have appeared legitimate. But Shield’s color-coded warning banner at the top of the message showed that the sender information didn’t match the company it claimed to represent.
“If that email went to a client and we didn’t have Shield in place, five times out of 10 they would’ve clicked,” Gross says.
Greenlight Tek began standardizing Shield as part of a mandatory security stack alongside their other Zero Trust offerings. Gross doesn’t give new clients a way to opt out of key protections.
“I would rather say no than take on a client who won’t let us protect them properly,” Gross says.
Compared to Greenlight Tek’s previous email security platform, Shield required far less ongoing administration. The hours the team used to spend tuning filters, investigating false positives and negatives, and cleaning up compromised inboxes dropped significantly.
“Out of the box, it works,” Gross says. “We’re spending far less time second-guessing the system or cleaning up after missed threats, which makes my life a lot easier.”
Protecting Sensitive Patient Data
Securing outbound communication without disrupting healthcare workflows was the next challenge to solve.
Greenlight Tek’s previous encryption tool relied on an Outlook plug-in and separate login process. In practice, healthcare staff often skipped encryption entirely because the workflow interrupted what they were already trying to do.
Mailprotector’s encryption solution, Bracket, removed that friction by making encryption as simple as adding brackets to the subject line.
Bracket also eliminated another operational headache: supporting recipients outside Greenlight Tek’s client base who struggled to access encrypted messages.
Instead of creating accounts and trying to remember passwords, recipients access encrypted messages through a secure link, dramatically reducing support calls tied to password resets and navigating unfamiliar portals they were never trained to use.
Intelligent Control Over Email Traffic
As Greenlight Tek continued standardizing Mailprotector solutions across its client base, the next evolution of Shield launched: intelligent, programmable control over inbound, outbound, and internal email traffic.
For Greenlight Tek, Email Traffic Control brought Shield and Bracket into a unified system through intelligent detection, a point-and-click workflow builder, and pre-built templates for data loss prevention (DLP) and other common use cases.
Instead of relying on static rules or healthcare staff to manually apply encryption, Gross built a workflow that detects protected health information (PHI) in outbound email from users with “med rec” in their email address and automatically routes those messages through Bracket to help maintain HIPAA compliance.
“We’ve barely scratched the surface with Email Traffic Control and it’s already delivering real value,” Gross says. “PHI protection is now automatic for our medical records staff, and we’re planning to expand to public health law compliance, trusted sender controls, and custom workflows for individual client needs.”
Security That Stays Out of the Way
With Shield, Bracket, and Email Traffic Control working together, trust decisions, encryption workflows, and PHI protection no longer depend on healthcare staff manually identifying risk or remembering additional steps.
Instead, more of that security now happens automatically in the background through policy-driven email control that aligns with the same Zero Trust principles already shaping the rest of Greenlight Tek’s security strategy.
For Gross, that shift represents the future of healthcare security: systems that quietly handle risk so healthcare organizations can stay focused on patient care. Read more about their mission.
How Greenlight Tek Automated Trust and Compliance for Healthcare Providers
Shield, Bracket·Case Study·5 min read
At a Glance
Challenge
Greenlight Tek identified a critical gap in their clients’ defenses. While the rest of the infrastructure was already secured through a Zero Trust approach, email still relied on clients making the right call. Healthcare workers were being forced to act as security filters—deciding which messages to trust and when to encrypt—while facing a new wave of AI-driven spear phishing, business email compromise (BEC) attempts, and growing compliance demands. This traditional approach to email security was driving up support costs and leaving sensitive healthcare data vulnerable.
Solution
Greenlight Tek standardized on Mailprotector to reduce the operational burden placed on both healthcare staff and the technicians supporting them.
- Shield focuses on whether a sender belongs in a user’s established circle of trust, so suspicious and unwanted email fades away naturally.
- Bracket simplified encryption to a subject-line command, making secure outbound communication as easy as sending a normal email.
- Email Traffic Control connected the two through automated workflows that secured protected health information (PHI) without requiring additional action from staff.
The Mission
Greenlight Tek supports healthcare providers across South Florida, including nursing homes, assisted living facilities, drug detox centers, and hospitals.
For President and CEO Carmi Gross, the goal is straightforward: deliver strong security without adding friction for the people delivering care.
“I focus on security so my clients can focus on their patients,” Gross says.
But generative AI has fundamentally changed the economics of deception. Attackers can now produce highly convincing phishing and impersonation emails at a speed and sophistication end users can’t reasonably evaluate.
In one recent case, a client was targeted in a six-figure BEC attempt involving fraudulent ACH instructions that appeared completely legitimate. As malicious email continued slipping through traditional defenses, Greenlight Tek’s technicians lost hours per week to password and 2FA resets, mailbox rule cleanup, and investigating false positives and negatives.
Extending Zero Trust to Email
Greenlight Tek had already embraced a Zero Trust approach through ThreatLocker to secure critical infrastructure. Gross strongly believed security should block suspicious activity by default instead of relying on users to make the right decision every time.
“I’d rather get 10 calls a day asking why something got blocked than one call that someone just transferred $100,000 to the wrong account,” Gross says.
Email remained one of the last areas where security still depended heavily on users recognizing threats correctly.
Then, at Zero Trust World 2025, Greenlight Tek discovered Shield—the first zero trust email security platform that aligned with the same principles already shaping the rest of their security stack.
Shield resets trust to zero and focuses on the email users actually want to receive so the rest naturally falls away.
Shortly after deployment, Gross spotted a QuickBooks lookalike email that Shield had sent to junk. To an untrained eye, it would have appeared legitimate. But Shield’s color-coded warning banner at the top of the message showed that the sender information didn’t match the company it claimed to represent.
“If that email went to a client and we didn’t have Shield in place, five times out of 10 they would’ve clicked,” Gross says.
Greenlight Tek began standardizing Shield as part of a mandatory security stack alongside their other Zero Trust offerings. Gross doesn’t give new clients a way to opt out of key protections.
“I would rather say no than take on a client who won’t let us protect them properly,” Gross says.
Compared to Greenlight Tek’s previous email security platform, Shield required far less ongoing administration. The hours the team used to spend tuning filters, investigating false positives and negatives, and cleaning up compromised inboxes dropped significantly.
“Out of the box, it works,” Gross says. “We’re spending far less time second-guessing the system or cleaning up after missed threats, which makes my life a lot easier.”
Protecting Sensitive Patient Data
Securing outbound communication without disrupting healthcare workflows was the next challenge to solve.
Greenlight Tek’s previous encryption tool relied on an Outlook plug-in and separate login process. In practice, healthcare staff often skipped encryption entirely because the workflow interrupted what they were already trying to do.
Mailprotector’s encryption solution, Bracket, removed that friction by making encryption as simple as adding brackets to the subject line.
Bracket also eliminated another operational headache: supporting recipients outside Greenlight Tek’s client base who struggled to access encrypted messages.
Instead of creating accounts and trying to remember passwords, recipients access encrypted messages through a secure link, dramatically reducing support calls tied to password resets and navigating unfamiliar portals they were never trained to use.
Intelligent Control Over Email Traffic
As Greenlight Tek continued standardizing Mailprotector solutions across its client base, the next evolution of Shield launched: intelligent, programmable control over inbound, outbound, and internal email traffic.
For Greenlight Tek, Email Traffic Control brought Shield and Bracket into a unified system through intelligent detection, a point-and-click workflow builder, and pre-built templates for data loss prevention (DLP) and other common use cases.
Instead of relying on static rules or healthcare staff to manually apply encryption, Gross built a workflow that detects protected health information (PHI) in outbound email from users with “med rec” in their email address and automatically routes those messages through Bracket to help maintain HIPAA compliance.
“We’ve barely scratched the surface with Email Traffic Control and it’s already delivering real value,” Gross says. “PHI protection is now automatic for our medical records staff, and we’re planning to expand to public health law compliance, trusted sender controls, and custom workflows for individual client needs.”
Security That Stays Out of the Way
With Shield, Bracket, and Email Traffic Control working together, trust decisions, encryption workflows, and PHI protection no longer depend on healthcare staff manually identifying risk or remembering additional steps.
Instead, more of that security now happens automatically in the background through policy-driven email control that aligns with the same Zero Trust principles already shaping the rest of Greenlight Tek’s security strategy.
For Gross, that shift represents the future of healthcare security: systems that quietly handle risk so healthcare organizations can stay focused on patient care. Read more about their mission.
Ready to see what email security looks like when it's fixed?
Join thousands of MSPs who protect their clients with Mailprotector.