I was recently interviewed by HealthITSecurity.com on the topic of Healthcare cybersecurity and compliance and the idea that there are many data breaches that are avoidable. The last few years have seen a lot of criticism for healthcare data security: a number of large healthcare data breaches have prompted an increase in HIPAA audits and fines, increased public scrutiny, and changes to the regulatory landscape. Thankfully, I’m seeing that there is now a greater understanding of security regulation requirements in healthcare, putting the healthcare field now ahead of other industries in security preparedness.
In the interview, I talk about:
- Increased enforcement of security regulations across all industries
- The kinds of data breaches that are the most preventable, and yet still happening way too often
- The challenges smaller organizations face with IT security and compliance
- What kinds of threats healthcare organizations should be worried about in the future
A trend throughout the interview is the intersection between people and technology and how breaches still happen if employees are negligent in how they access and use protected health information (PHI) and other corporate data. Public scrutiny and regulations at both the state and federal level have forced healthcare organizations to become leaders in IT security, but it’s an ongoing process with complex challenges that will always need to be addressed.
Check out the full article here.