Healthcare Breaches: Quick Detection and Remediation

Cybersecurity is a major concern for health and life sciences organizations globally. While compliance is important, with the cost of a data breach now at $355 (USD from Ponemon 2016 Cost of Data Breach Study: Global Analysis) per patient record, and ransomware infections causing severe disruption of healthcare, avoiding breaches and ransomware are now top priorities.

Exacerbating this, many breaches go undetected for months or even years, resulting in much greater business impacts. The threat landscape is also constantly changing. In 2015 cybercrime hacking was top of mind, while in 2016 ransomware has vaulted from a previously obscure type of attack to a mainstream issue, threatening to disrupt health and life sciences organizations globally by denying access to patient records. Compounding this challenge, attacks are getting more sophisticated, and the IT of healthcare organizations is growing rapidly in both diversity and number of devices, especially with BYOD, IoT, wearables and related trends. With spear phishing, and accidents or workarounds, healthcare workers increasingly find themselves on the front lines of the cyber security battle, using new “information power tools” to improve patient care under constant time and cost reduction pressure.

For effective detection and remediation of sophisticated attacks, modern cyber security must integrate with other cyber security safeguards and handle terabytes of diverse data, both structured and unstructured, and go beyond signature based detection and simple correlation to enable near real-time detection of even small changes in system or user behavior using advanced behavioral analytics. To support rapid investigation of alerts and remediation of issues it must also enable Security Analysts to interactively search, query, and visualize information.

Cloudera Enterprise Data Hub (EDH), powered by Apache Hadoop, and running on Intel, enables rapid detection and remediation of breaches. EDH uses behavioral analytics on terabytes of data, also including unstructured data, to enable the detection of sophisticated attacks and breaches in hours, and typically reducing false positives by more than an order of magnitude. For more information about Cloudera EDH for Cybersecurity, powered by Apache Hadoop, running on Intel see Three Reasons to Modernize Your Cybersecurity Architecture and Cloudera and Intel Solutions. Join Intel and Cloudera at the Summit of the Southeast 2016, September 13th – 15th in Nashville, TN.