Blog
We know you have a lot of questions. That’s why our team has curated top-notch resources to help you along your healthcare cybersecurity and compliance journey.
Making it Easier to Identify Your Most Critical Risks
IRM|Analysis doesn’t just identify risks; it tells you which risks matter most to your organization based on a range of artificial intelligence and machine learning inputs so you know which ones you should focus on fixing first. Learn more about how to automate, simplify, and quantify your risk analysis process.
Quantifying Vendor Risk and the Financial Impact a Vendor Breach Can Have on Your Organization
The inability to adequately predict, quantify and understand the economic impact that vendors pose to healthcare providers has become a major issue as third-party data breaches grow in frequency and severity.
Business Associate to Business Associate: Selecting an Information Security and Privacy Framework
Specifically focused on business associates and their obligations to customers and HIPAA when it comes to selecting an information security and privacy framework.
8 Key Terms to Drive a Productive Dialogue About Enterprise Cyber Risk Management
In order to have a meaningful and productive conversation about cyber risk and cybersecurity, everyone at the table needs to be able to speak with precision and understand the differences between a risk, a vulnerability, and a threat, among other terms.
The Realities and Legalities of Risk Analysis and Risk Management in Healthcare
Managing risk across your healthcare enterprise comes with many challenges, but the benefits of shoring up your risk management processes to support your data security and privacy program cannot be overlooked.
Penetration Testers Offer Real-World Advice About Threats, Securing Your Healthcare Organization
Today’s modern threat landscape is constantly evolving. Determined, opportunistic, and well-resourced threat actors continue to develop tools, tactics and techniques aimed at gaining access to systems, stealing data, and/or installing ransomware.
Business Associate to Business Associate: A CISO’s Perspective on Applying Controls to Identified Risks
Thoughtful selection, implementation, management, and monitoring of technical controls is required for ongoing risk management hygiene.
Encompass Health Automates Its HIPAA Compliant Risk Assessment & Strengthens Security Risk Management
Clearwater partnered with Encompass Health to implement its enterprise Risk Analysis and Cyber Risk Management ...
Carrying Out a HIPAA Corrective Action Plan
What the University of Rochester Medical Center Learned From the Process
Originally published by ISMG
Mark ...
HR 7898: More Incentive for Healthcare Entities to Adopt Cybersecurity Best Practices
This new law requires the U.S. Department of Health and Human Services (HHS) to consider a healthcare entity's adoption of cybersecurity best practices when determining the length and outcome of audits or the amount of fines or extent of penalties it will impose.
A Look at the Impact of the MD Anderson Court of Appeals Decision on OCR and Your Healthcare Entity
What we can learn from this to help better prepare your organization for potential interactions with OCR now and in the future?
Business Associate to Business Associate: A CISO’s Perspective
In this blog and others that will follow in the series, it’s my goal to share insight on how we think about and approach the security of our solutions with other organizations that serve as Business Associates (BA) in the healthcare industry.
Newsletter
Sign up for our monthly newsletter discussing hot topics and access to invaluable resources.
Featured Resource
Introduction
You just received notice that a vendor that maintains your organization’s data was hacked, and the ...