healthsystemCIO.com is the sole online-only publication dedicated to exclusively and comprehensively serving the information needs of healthcare CIOs.
With breaches becoming increasingly common, it’s important to have a set of standards to help healthcare organizations safeguard data, according to Joey Meneses, CTO at Akron Children’s Hospital. In this guest blog, he provides guidance covering a number of areas, from access controls to breach notifications to patch management.
On most days in cyber, it can seem like there are a million things to do. For Jim Kuiphof and his team, that was probably the case in 2022 when Spectrum Health and Beaumont Health merged to become 22-hospital strong Corewell Health. Of course, there was much foundational work to be done, but Kuiphof notes […]
It’s the key question all CISOs have to ask themselves – especially those at small- to mid-sized organizations whose cyber teams run in the single digits as opposed to hundreds: how do I operate so as to get the biggest bang for my limited buck? For Blaine Hebert, VP and CISO at Yuma Regional Medical, […]
NIST’s Cybersecurity Framework provides a solid structure for managing threats and vulnerabilities; however, there is still “a paramount need to enhance the skillsets of cybersecurity practitioners, particularly in the functions of Respond and Recover,” according to Dennis Leber, PhD. In this piece, he talks about what it will take to close the gap.
You might think a former drill sergeant turned CISO would lead with a ‘my way or the highway approach,’ but for Terry Grogan, VP of IT Assurance & CISO at Tower Health, that couldn’t be further from the truth. That’s because, according to Grogan, such leadership will only see you followed when seas are calm, […]
The IT stack of the past cannot service the health system of the future. That’s one of the main sentiments that runs through the following thoughts offered by Franciscan Missionaries of Our Lady Health System (FMOLHS) SVP/CIO Will Landry. For example, legacy and on-prem technology cannot provide the business continuity and disaster recovery capabilities that […]
There’s an old parenting saying, “Do as I say, not as I do.” Of course, it’s meant to get parents off the hook for not demonstrating the behavior they want emulated. Unfortunately, it rarely works, as the disconnect between talk and action isn’t lost on the little ones. When it comes to recent conferences, some […]
Effective cybersecurity strategy starts with developing an adversarial mindset and understanding the likely first and last steps a bad actor will take when entering and exiting a network, according to Intermountain VP/CISO Erik Decker, who made the comments at the 2024 HIMSS Global Conference during a session entitled, “Break the Attack Chain: Understanding Cybercriminals’ Focus […]
As the old expression goes, time is money. For executives like Keith Duemling, Senior Director of Cybersecurity Technology Protection, Cleveland Clinic, time is also about focus. That’s why he’s laser focused while at shows like HIMSS on finding ways to better protect the clinic’s patients and their data. To that end, exhibit floor games that […]
It’s the old preconception that’s kept security out of the equation for far too long – if cyber gets involved, the whole project is dead, or at least not going anywhere fast. Luckily that dynamic is falling by the wayside, as business leaders have to come to realize that not including security means taking on […]
