CLOSE

Specials

  • Other
  • Healthcare Consulting
  • Revenue Cycle Management

I agree We use cookies on this website to enhance your user experience. By clicking any link on this page you are giving your consent for us to set cookies. More info

Skip to: Curated Story Group 1
healthcarebusinessreview

About us

Solutions/Services Providers

  • Home
  • News
  • Contributors
  • Magazine
  • Conferences
  • Newsletter

Nominate a Company

Our subscribers nominate the companies with whom they have collaborated and gotten results. If you think there is a company that deserves to be on our upcoming prestigious annual list of Top HealthcareBuisness companies, please write to us about them and the reasons you think they need to be on the list

* 

Thank You!

checkmark

Your nomination request for upcoming annual list of "Top HealthcareBuisness Companies" has been Successfully Sent . We will be in touch with you shortly.

Data not inserted

Thank you for Subscribing to Life Science Review Weekly Brief

  • Home
  • Contributers

Recommended Insights

How Pioneering Technologies Streamline and...

Andrew Parker, Vice President, Corporate Business...

3D Printed Talus Replacement

Jisun J. Lee, MS, DPM, Mica Murdoch, DPM, Ashley...

Connected Care

Samuel Alfano DO, Medical Director, Clinical...

The [EHR] Doctor is in

Rebecca G. Mishuris, MD, MPH, MS, Chief Medical...

Hospitals Rely on New Technologies to...

Andrew Parker, Vice President-Human Resources &...

Medical Spine Care: Have We Finally Arrived?

Michael Geraci, Medical Director Comprehensive Spine...

The Modern Day Biomechanics

Julio Martinez, Medical Director, Baystate Health

Reducing Clinical Variation in Medicine...

Michael C. Sanders, M.D., Chief Medical Informatics...

How Pioneering Technologies Streamline and...

Andrew Parker, Vice President, Corporate Business...

3D Printed Talus Replacement

Jisun J. Lee, MS, DPM, Mica Murdoch, DPM, Ashley...

Connected Care

Samuel Alfano DO, Medical Director, Clinical...

The [EHR] Doctor is in

Rebecca G. Mishuris, MD, MPH, MS, Chief Medical...

Hospitals Rely on New Technologies to...

Andrew Parker, Vice President-Human Resources &...

Medical Spine Care: Have We Finally Arrived?

Michael Geraci, Medical Director Comprehensive Spine...

The Modern Day Biomechanics

Julio Martinez, Medical Director, Baystate Health

Reducing Clinical Variation in Medicine...

Michael C. Sanders, M.D., Chief Medical Informatics...

Achieving Information Security in Healthcare

By Dan Costantino, CISO, Penn Medicine
Tweet

Owing to the growing concerns of patient data security, it’s indispensable for the healthcare experts to reassess their information security programs. It is critical to scrutinize whether you have implemented fundamental security controls and practices, such as patching, apart from identification and security awareness. Consistently networking with CISOs in the industry is one of the best practices to ensure that you are going in the right direction, performing a part of the essentials that you ought to be. It’s also imperative to frequently have an expert assist you in understanding if you are allocating your resources in the right places, investing in the right asset, and focusing on the right risks and threats. Often, it takes an external firm that can give you inputs on better resource utilization on a yearly premise, to help advance your program.


Evolution of the Role of CISO


Lately, the role of a CISO has changed significantly. Who was once viewed as simply the leader of IT security systems, the CISO, is a critical stakeholder in the business now. This is because of the increase in data breach threats and a more profound understanding of data security at a broader level which was earlier restricted to technical systems and IT systems. Likewise, they are required to have a significant comprehension of the business and its mission while also possessing a solid technical acumen.


Key Challenges of a CISO in the Healthcare Industry


In the healthcare industry, CISOs are facing a lot of unique challenges today. The most significant challenge is the need to design a secure environment while not compromising patient care in any way. It’s really important for CISOs and information security teams to be cognizant of all that the clinical personnel and researchers are doing every day. They also need to understand that our patients come to us because of all the innovative work and miracles that they are performing. It’s our responsibility to support that mission while maintaining the safety of our patients’ data. That’s very challenging and unique in the healthcare information security arena.


The healthcare information security landscape is witnessing major technological developments. One of the primary developments is the never-ending list of storage repositories and a record of where data is transmitted to, including IoT, cloud, mobile, and medical devices. The challenge is that we live in an environment where there is no longer a parameter to protect. Hence, there exists the challenge of protecting data and frameworks that are designed that share the data with everyone. 


QUOTE1_Replace]


Today, systems are not inherently designed to be secure; they’re designed for availability and information sharing.


Application of Behavioral Analytics on Insider Threats within Organizations


The industry, in general, is facing a major challenge due to insider threats. Often, these threats are not really malevolent moves that are being made by employees; it isn’t a workforce with malicious intentions. One of the challenges is when employees work in an environment for a long period of time, they develop a strong sense of ownership in the data, the research and the designs produced by them. When it’s time for those employees to leave, it’s not unusual for them to feel that they deserve to use the data at their will. The behavioral analytics platforms today and the application of it, is truly being the emphasis on the insider threat. It’s necessary to understand the key pointers or behaviors that the workflow is demonstrating. A string of key behaviors combined with each other can most likely give us some proactive insights into a harmful event that could take place later on, whereas we are currently trying to be reactionary after that incident has already taken place.


Advice to an Aspiring CISO


It’s an absolute must to build a team that has the capability of performing not only the everyday security tasks, but also becoming ingrained in the strategy and the development of the overall program.


Something that security industry is good at, but still has room for enhancement, is information sharing— sharing information with all security personnel, not just what we are doing well, but also some of the adverse situations that we are seeing within the industry. Information sharing truly comes from various distinctive sources. One of them is through networking; another source is NH-ISAC. The information sharing happens throughout the industry, not simply with security pioneers, but also with security engineers, analysts, and regular professionals.


The objective should be to build a world-class security program and create next-generation security levels in your program. A CISO need not contemplate implementing cutting-edge security from the very beginning. It is really essential to start from the fundamentals.


Weekly Brief

loading
> <
  • Other 2021

    Top Vendors

    Current Issue
  • Other 2020

    Top Vendors

    Current Issue

Read Also

Technology in Healthcare should be Proactive, ahead of Risks and Aiding Focus on Variations to Plan

Roni H. Amiel, Co-Founder & CTO, Pinscriptive
Technology in Healthcare should be Proactive, ahead of Risks and Aiding Focus on Variations to Plan

How Pioneering Technologies Streamline and Improve Clinical Care

Andrew Parker, Vice President, Corporate Business Development and General Counsel, bioMérieux, Inc. [EPA:BIM]
How Pioneering Technologies Streamline and Improve Clinical Care

3D Printed Talus Replacement

Jisun J. Lee, MS, DPM, Mica Murdoch, DPM, Ashley McClain, DPM, Broadlawns Medical Center
3D Printed Talus Replacement

Connected Care

Samuel Alfano DO, Medical Director, Clinical Informatics, Crozer Chester Medical Center
Connected Care
The [EHR] Doctor is in

The [EHR] Doctor is in

Rebecca G. Mishuris, MD, MPH, MS, Chief Medical Information Officer, Boston Medical Center & Assistant Professor, Boston University School of Medicine
Hospitals Rely on New Technologies to Strengthen Patient Care

Hospitals Rely on New Technologies to Strengthen Patient Care

Andrew Parker, Vice President-Human Resources & General Counsel - Americas, bioMérieux, Inc. [EPA:BIM]

Medical Spine Care: Have We Finally Arrived?

Michael Geraci, Medical Director Comprehensive Spine Program, Catholic Health
Medical Spine Care: Have We Finally Arrived?

The Modern Day Biomechanics

Julio Martinez, Medical Director, Baystate Health
The Modern Day Biomechanics
Loading...

Copyright © 2021 Healthcare Business Review . All rights reserved. |  Subscribe follow on linkedin

This content is copyright protected

However, if you would like to share the information in this article, you may use the link below:

https://www.healthcarebusinessreview.com/cxoinsight/achieving-information-security-in-healthcare-nwid-88.html