Why Establish a Security Culture
Five “Security Culture” Markers to Aim for in your Organization: Cybersecurity is a top-down, strategic part of the company’s vision – Security is linked to business goals and relevant to board-level decisions You’ve determined a “data blueprint” of how data is used – Your team understands the context in which the data is created and... Continue reading
Why Healthcare Has a Cyberattack Target On It…
We’ve all heard by now that healthcare is seriously lagging in cybersecurity effectiveness. According to a recent study, healthcare ranked 15th out of 18 major U.S. industries in terms of overall cyber health. Another study indicates that in the past seven years, 2,149 breaches have occurred, amounting to 176.4 million patient records disclosed. If you’re... Continue reading
Security Breaches: Surprising Fact of Employee Snooping
Secure your healthcare information so you’re not at risk for security breaches! According to a recent privacy breach survey of healthcare providers – 70% of which admitted to having at least one security breach – 35% attributed the breach to unauthorized access by their own employees. Take note of that stat: essentially, the survey found... Continue reading
DevSecOps Mindset Promotes Better Security
Changing a company’s security culture is hard sometimes. Consider the techy world of applications development, if you will. (Even if this doesn’t apply strictly to you, the lessons are helpful). Typically, as one network security expert points out, the old ways of bringing usable software to market involved “every man to his island.” You had an IT... Continue reading
Podcast – Is GMAIL HIPAA Compliant?
AK: Can I email PHI? GV: HIPAA mandates that you protect PHI (Protected Health Information) in transit, in storage, and at rest. There is a common misconception that email is a secure way to send and receive PHI. On its own, email is not a secure platform to transmit PHI. In fact, using Google’s email service,... Continue reading
The HIPAA Vault Story
Doug: Hello and welcome to the MSP Voice Webinar series. Today I’m pleased to be joined by Gil Vidals, from HIPAA Vault, and he’ll be talking about their HIPAA compliant cloud. So Gil, why don’t you go ahead and take it away. Gil: Alright Doug, thanks for inviting me. I’m looking forward to talking about... Continue reading
HIPAA and HIPPOCRATES
The Department of Justice recently charged a physician for violating HIPAA Rules, after he permitted a sales representative from a major pharmaceuticals company to access the confidential health information of his patients – without their consent. The motive, as usual, was greed. If particular patients could be targeted for the drug, the pharmaceutical company, as well as... Continue reading
When an employee saw an “urgent” email from her boss
When marketing professional Kari Hornfeldt saw an “urgent” email from her boss, requesting that she purchase $1,000 worth of Google Play gift cards to give to company clients, she wasted no time. “In hindsight, I should have been like, ‘This is weird,’ but your boss asks you to do something and you do it,” Hornfeldt... Continue reading