Healthcare Security is Increasingly About Survival

In the wild, no prey is completely safe from predators. However, it is clear to prey which members of the herd are weak or vulnerable to predators. They certainly also know which one is being pursued, or has been caught by a predator.

In healthcare, no organization is immune from breaches, regardless of how advanced their security is. There is always residual risk, for example from spear phishing. Healthcare organizations, even those that do risk assessments well, and address any deficiencies identified, don’t know how their security stands relative to other healthcare organizations. In a sense they don’t know whether they are “low hanging fruit” for predators such as cybercriminals. Exacerbating this, many healthcare organizations lack the security intrusion detection capabilities to detect when they are being actively pursued by hackers. Many cybercrime breaches go on for months or even years before they are detected and stopped, vastly increasing the number of patient records compromised and the business impact of the breach.

iStock_000042526114_Small.jpg

Intel Health and Life Sciences, together with Intel Security, just released an online Healthcare Security Survey that invites participants from healthcare organizations to securely and confidentially answer a few questions about their breach security safeguards and posture. Based on the input provided their breach security is scored, and summary recommendations are made on possible next steps improve. Participants are then offered the opportunity to engage in a subsequent 1-2 hour breach security assessment that confidentially analyzes their healthcare organizations breach security posture in more detail, identifying any potential gaps and improvements. Post assessment participants receive a report of their results together with how their healthcare organizations breach security compares with the rest of the healthcare industry. Several of the breach security controls analyzed improve detection of breaches, enabling the organization to detect hacking, intrusions or breaches.

Ponemon Institute 2015 Cost of a Data Breach Research estimates the total average cost of a data breach at $6.53M, or $398 per patient record. In fact, we have seen the business impact of recent cybercrime breaches going higher than $100M. With this kind of impact, and the alarming frequency of breaches, the need to rapidly address this issue has never been more urgent.

If you are working for a healthcare organization, join us now in taking the online Healthcare Security Survey challenge, and enrolling in our Healthcare Breach Security Assessment pilot program to confidentially see where your healthcare organization stands in terms of breach security posture relative to the healthcare industry, and any potential gaps and opportunities to improve with a multi-year, incremental, layered approach that fits within your budget and resource constraints.

What questions do you have?