Delta Dental Plan of Michigan administers dental benefits for over 80 million people across all 50 states, Puerto Rico, and U.S. territories through a national network of affiliated companies. Operating since 1957, the organization handles plan administration, benefit delivery, and claims processing at the scale required to serve one of the largest insured populations in the country.
The company manages infrastructure spanning multiple states - Michigan, Ohio, Indiana, and beyond - processing claims and maintaining eligibility systems for employer-sponsored, individual, and public dental plans. This distributed operational footprint across state lines, combined with the volume of protected health information flowing through claims and enrollment systems, creates a complex attack surface. Threat models include insider risk across multiple jurisdictions, third-party vendor access to member data, and the typical healthcare targets: ransomware on claims processing, credential compromise on administrative systems, and social engineering against staff with access to member records.
Delta Dental's security mandate extends beyond transactional protection. The organization manages personally identifiable information and health data for millions of members, handles HIPAA compliance obligations across state regulatory frameworks, and maintains integrations with employer clients, dental providers, and state health programs. Securing this ecosystem requires controls across identity and access management, data protection at rest and in transit, incident response for healthcare data breaches, and vendor risk management across a supplier base that includes software providers, cloud services, and dental network partners.
