From the May 2018 issue of HealthCare Business News magazine
Best practices
To effectively create a better cyber posture for health care organizations, there is a need for integrative capacity, scalability and real-time assessment capabilities. With the increasing incidence of cyberattacks, these organizations will need to designate a higher level of IT spending to mitigate the compounding risks. According to technology research leader Gartner, in a story in CSO, “cybersecurity spending could exceed $1 trillion from 2017 to 2021.” Health care executives must leverage their financial resources to best position their organizations to defend against cyber threats.
Understanding best practices in developing effective cybersecurity measures is a strategic approach to delivering on this agenda.
Consider the following cybersecurity functions and suggested controls:
• Identify, protect, detect, respond and recover.
• Comprehend the threats facing the health organization, including ransomware and phishing.
• Identify the critical assets and proprietary knowledge, including personal identifiable information.
• Understand the strengths and weaknesses of current cybersecurity arrangements.
• Awareness raised and training needed for employees about proper computer posture.
• Develop a cybersecurity roadmap with a plan to remediate in the wake of an attack.
On the last point, relative to developing a cybersecurity plan, health care executives, in coordination with their IT departments and vendor partners, should focus on several important actions, including:
• Ensuring that all hospital technology has the latest security software, web browser and OS.
• Creating a mobile device action plan.
• Protecting Internet connections by using a firewall and encrypting information.
• Controlling physical access to computers and network components with complex passwords.
With the range of cyber threats constantly changing, health care organizations need to be even more vigilant in their approach to mitigating cyber risks and strengthening their security profile. Health care professionals can benefit from the insight and expertise of a trusted IT solution team to assist them in navigating the complexities of the cybersecurity world.
About the author: Brian Berger is the executive vice president of commercial cybersecurity for Cytellix, responsible for 24/7 system management and business operations, as well as marketing, development, sales and engineering support of the cyber team and its solutions. With more than 28 years of experience in device security, IT, data analytics and corporate leadership, Berger has led the successful development of strategic engagement agreements with multibillion-dollar cloud service providers, securing significant contracts in data encryption, authentication, network security, cloud, analytics and embedded hardware security.
Back to HCB News
