Healthcare Security
Healthcare cybersecurity is rapidly transforming the healthcare industry by providing the necessary protection for sensitive patient data and medical systems from growing threats like cyberattacks, data breaches, and ransomware.
As healthcare organizations increasingly adopt digital technologies such as electronic health records (EHR), telemedicine, and cloud computing, ensuring the security and privacy of patient information has become a top priority.
Advanced cybersecurity measures, including encryption, multi-factor authentication, and continuous network monitoring, help healthcare providers protect against unauthorized access and safeguard critical medical data. To know more, read our Healthcare Security special issue.
Ransomware Preparedness for Healthcare: Enhancing Resilience Amid Growing Threats
By Dilip Nath, AVP & Deputy CIO, SUNY Downstate Health Sciences University Ransomware attacks have become a significant problem in the healthcare sector. These criminal operations have become a formidable foe that needs a concerted response from healthcare groups. The ...
Thoughts on Cyber Intelligence and Blockchain
By Rishi Tripathi, Chief Information Security Officer, Mount Sinai Health System Cyberattacks occur worldwide almost every day, yet it is challenging to learn the type and target of an attack in real time. A vast amount of cyber intelligence goes ...
Nearly Free Cybersecurity Improvements
By Steve Leblond, VP of IS Operations – COO – IS Division, Ochsner Health Improving an organization’s cybersecurity posture often involves an investment of significant time and dollars. Whether it be a new tool to scan for threats or an ...
The Need for Enhancing Cybersecurity Awareness Training Programs in Healthcare
By Dr. Mauricio Angée, CISO, University of Miami Health System Healthcare organizations have been experiencing an uptick in the number of security breaches since the start of the COVID-19 pandemic. While pre-pandemic cybersecurity was mainly focused on fortifying the network ...
Defense in Depth – A Strategy for Today
By Derek Sliger, Sr. Director Information Security, Children's Health Defense-in-Depth, a concept to employ technical security controls in a layered manner throughout an information system’s deployment, is not a new concept. The goal is simple. If a vulnerability is exploited, ...
The Challenge of Securing That Which Is Invisible
By Tomislav Mustac, Senior Director Cybersecurity, Mount Sinai Health System Not that long ago, the cyber threat landscape of most health delivery organizations (HDOs) was much simpler than it is today. The general consensus on cybersecurity was that it was ...
The Importance of Creating a Culture of Security in Healthcare
By Kate Pierce, CIO/CISO, North Country Hospital I’m sure you’ve heard the expression, “We’re all in this together.” Unfortunately, this sentiment has never been more accurate than when speaking about your healthcare organization’s information security. In today’s environment, having a ...
Application Rationalization Journey in a Large Complex Health System
By Tabitha Lieberman, SVP Clinical and Revenue Cycle Applications, Providence St. Joseph Health When my daughter was young, she jumped on the beanie baby bandwagon and worked her way through the family governance structure to get a healthy capital investment ...
Private Cyber Battlespace
By Christopher Baldwin, System Director, Information Security, Hartford HealthCare My previous article on the Cyber Maginot Line explained how any cybersecurity strategy that does not realistically consider the possibility of compromise, however fortified and well-conceived — is dangerous. News media ...
Healthcare Cybersecurity – “Building an IT Security & Awareness Culture”
By Brian A. Shea, CIO, MedOne Hospital Physicians I have been in healthcare IT for over half of my almost 30 years in IT. Healthcare definitely has its uniqueness compared to other industries; however, it is not unique in the ...
Morphisec-A Proactive Defense in Healthcare Cybersecurity
‘Proactive breach prevention made easy’ is perhaps the best way to describe Morphisec, a world-renowned provider of advanced security solutions from endpoint to the cloud. For years Morphisec has offered the best protection for all sizes of businesses with any ...
Cyberattacks Against Healthcare Can Be Prevented
By Alexander Grijalva, CISO, VillageCare Healthcare’s cybersecurity problem is a half-century old affliction that began with the first step towards digitization. When hospitals introduced computerized systems in the late 1960s and 1970s, they also unwillingly exposed themselves to cyber threats ...
Tag line: Cyber Safety is Patient Safety
By Erik Decker, CISO & CPO, University of Chicago Medicine When most people hear the term “Information Security,” they immediately think of “the protection of our data.” Our regulatory regimes back such observations, with the requirements of protecting health information ...
Building a Strong Healthcare Cybersecurity Program is a MUST!
By Kate Pierce, CIO & CISO, North Country Hospital In 2020, every healthcare organization was stretched to its limits by the worldwide pandemic. Throughout this historic year, IT was heavily relied upon as an essential component to solving a complex ...
Healthcare Cyber Security and the Challenges with the Diagnostic Vendor Space
By Arthur F. Ream III, Senior Director of IT Applications & Integration | CISO, Cambridge Health Alliance The U.S. FDA's Center for Devices and Radiological Health (CDRH) has always remained committed to promote and protect public health, including the safe ...
Developing a Cloud Security Strategy
By Shefali Mookencherry, MPH, MSMIS, RHIA, CHPS, HCISPP, CISO, Edward-Elmhurst Health The mitigation of security risks in cloud computing is a challenge to many healthcare organizations. As organizations move to the cloud more frequently, cloud security is a major concern ...
Who is responsible for Cybersecurity?
By TJ Mann, Senior Director Cybersecurity & CISO, Children’s Mercy Businesses are moving at the speed of a Ferrari and the massive ongoing digital transformation is fueling it. Indeed, the COVID-19 pandemic has been the reason for many organizational digital ...
Examining the Impact of Reactive and Proactive Investments in Cybersecurity
By Dr. Mauricio Angee, CISO, University of Miami Health System Cybersecurity has become an essential and critical component of every organization. From retail corporations, financial institutions, healthcare organizations, government agencies to small businesses safeguarding information assets and maintaining compliance with ...
Securing the Revenue Cycle Remote Workforce
By Scott Dresen, SVP & CISO, Spectrum Health The COVID-19 pandemic changed health care dramatically almost overnight. Across the country, those health care systems hit hard early were in crisis mode, trying to manage the overwhelming influx of patients. Those ...
Center for Internet Security (CIS) – Healthcare Cybersecurity Challenges during the COVID-19 Pandemic
Healthcare organizations continue to be targets for adversaries, especially during the global COVID-19 pandemic. Cybersecurity often takes a backseat to patient care as organizations are struggling to keep up with the unprecedented demand on services and requirements for IT infrastructure ...
Creating Effective Security Change in Your Organization
By Devin Shirley, CISSP, C|CISO, CRISC, Arkansas Blue Cross Blue Shield Information security is something I’ve been involved within various environments - working in the Army, technology manufacturing, hospital, telecommunications, and now at a health payer. I’ve seen security capabilities ...
Taking an Evidence-Based Approach to Healthcare Security
By Christopher Frenz, AVP of Information Security and Infrastructure, Interfaith Medical Center The onset of the COVID-19 pandemic has resulted in a period of significant and fast-paced change for many healthcare organizations. Within the last few months, many healthcare providers ...
Hardening The Security Posture While Enabling Your Healthcare Organization
Connie Barrera By Connie Barrera, CISO, Jackson Health System When you peel away the layers and minimize the noise, the ultimate goal of the IT Division, should be, to enable the business. This requires business operations to optimize people, process ...
Holistic Cyber Safety in Healthcare
By Jothi Dugar, CISO, National Institutes of Health, Center for Information Technology (CIT) Often, in a healthcare setting, band-aid fixes are used for patients giving them a false sense of security in their overall health. For example, when a patient ...
Humans – The last line of cyber defense
By Monte Ratzlaff, Director, Cyber Risk Program, University of California, Office of the President/UC Health What if I told you that humans, not technology, are the most critical aspect of securing your organization? Sure, we need security technology, but it’s ...
The need for nimble information security practices to protect patient care and data
By Cris Ewell, PhD, CISO, UW Medicine Healthcare continues to be targeted by cybercriminals, and we have seen an increase in the number and sophistication of attacks. We all need to recognize that the cybercriminals are well motivated and resourced, ...
Patient Privacy
By Aaron Miri, CIO, The University of Texas at Austin A few weeks ago, my 4 year old daughter was receiving her annual flu shot and a routine primary care checkup. Much to my surprise, the front desk staff mentioned ...
Ghangor Cloud – Combatting Cyberthreat With AI-enabled Advanced Technology
Tarique Mustafa, Founder, CEO & CTO, Ghangor Cloud Healthcare, in the past couple of years, has undergone a colossal transformation and the advancement that is being made appears to be directly from the pages of a science fiction novel. For ...
Successful Cyber Security through Proactive IT Risk Management
Tim Swope By Tim Swope, CISO, Catholic Health Services of Long Island In order to deliver value to our customers, patients, employees, communities and shareholders, we Healthcare organizations must understand and manage the risks faced across our entire organization. Risks ...
Cyber Security Framework to Streamline the Information Security Program
By Bruce Forman, CISO, UMassMemorial Health Care The implementation of a cyber security framework establishes a standard that allows for a structured approach to cyber security and a simplified, repeatable process to developing, managing, and maintaining the cyber security program ...