There’s an old parenting saying, “Do as I say, not as I do.” Of course, it’s meant to get parents off the hook for not demonstrating the behavior they want emulated. Unfortunately, it rarely works, as the disconnect between talk and action isn’t lost on the little ones. When it comes to recent conferences, some […]
HIMSS24 Conference Wrap: Erik Decker says Shedding Flat Architecture is Key to Slowing Bad Guys Down
Effective cybersecurity strategy starts with developing an adversarial mindset and understanding the likely first and last steps a bad actor will take when entering and exiting a network, according to Intermountain VP/CISO Erik Decker, who made the comments at the 2024 HIMSS Global Conference during a session entitled, “Break the Attack Chain: Understanding Cybercriminals’ Focus […]
HIMSS Conference Preview: Keith Duemling on His Medical Device Security Session, How IT Executives Can Make Most of Shows, & Some Dont’s for Sales Folks
As the old expression goes, time is money. For executives like Keith Duemling, Senior Director of Cybersecurity Technology Protection, Cleveland Clinic, time is also about focus. That’s why he’s laser focused while at shows like HIMSS on finding ways to better protect the clinic’s patients and their data. To that end, exhibit floor games that […]
Q&A with Children’s Hospital of Philadelphia CISO & Associate CIO Monique St. John: Security Actually Empowers Innovation
It’s the old preconception that’s kept security out of the equation for far too long – if cyber gets involved, the whole project is dead, or at least not going anywhere fast. Luckily that dynamic is falling by the wayside, as business leaders have to come to realize that not including security means taking on […]
Live @ Vive Q&A with Greg Garcia, Executive Director, Cyber Security, Health Sector Coordinating Council: Guidance Moving Towards Simplicity, Clarity
Healthcare is complicated. So it’s not surprising that healthcare cybersecurity is just as complex. But what shouldn’t be complicated is the guidance health systems are given to deal with threats. In the past, a number of well-meaning entitles – from government to private to hybrids of the two – have put out roadmaps, frameworks and […]
Live @ Vive Partner Perspective Q&A with Ryan Witt, VP, Industry Solutions, Healthcare, Proofpoint: Healthcare is Blessed to Have 405(d)
Healthcare is abuzz with talk of artificial intelligence. And when it comes to cybersecurity, that buzz both has to do with how the bad guys are going to use it, and how the good guys can apply it to defense. But Ryan Witt, VP, Industry Solutions, Healthcare, Proofpoint, warns that today, the time of small- […]
Q&A with Ascension Health Director of Cybersecurity Skip Sorrels: Getting to Know Users Diffuses Many Situations
When Skip Sorrels, Director of Cybersecurity with Ascension Health, tells a clinician who may be frustrated with IT that he knows what they are going through, he means it. That’s because, in a past life, Sorrels served as an ICU nurse before moving to cyber. As such, he understands what it’s like to have a […]
Q&A with Intermountain Healthcare VP/CISO Erik Decker: CPGs Will Help Organizations Clarify Their Cyber Mission
Cybersecurity in healthcare is at a tipping point, poised to move from the voluntary to the mandatory, although not quite yet. For now, it’s still up to organizations as to whether not they want to comply with any specific framework or set of best practices. Of course, demonstrating adherence to 405(d)’s HICP should get some […]
Q&A with Sutter Health SVP, Chief Integration Officer, CISO & Chief Privacy Officer Jacki Monson: The Current Approach to 3rd-Party Risk Management Must Change
It’s been said by many a CISO that they essentially function as the chief risk officer. What they are trying to say, of course, is that the job is all about understanding and communicating cyber risk. Interestingly Jacki Monson – currently Chief Integration Officer, CISO & Chief Privacy Officer at Sutter Health – once also […]
Q&A with Summa Health CISO Swathi West: “A Solid 90-Day Assessment Can Make All the Difference”
When Swathi West started at Summa Health in early 2023, she embarked on a 90-day assessment that included reviewing job descriptions, along with policies and standards. It’s an approach she heartily recommends for a number of reasons. First, in reviewing job descriptions, West founds a lack of detail that could cause confusion around roles and […]