Healthcare Cyber Threat Landscape to be Covered in HIMSS Privacy and Security Forum

Over the next week, the HIMSS Privacy and Security Forum will be held in San Francisco. The two-day conference provides an chance for CISOs, CIOs and other healthcare professionals to obtain valuable guidance from security experts on the most recent cybersecurity threats, along with practical tips on how to limit the chance of damage being inflicted.

In excess of 30 speakers will be present at the event and will provide talks on a wide range of healthcare cybersecurity topics, including securing IoT devices, stopping phishing and ransomware attacks, creating compliant security relationships and effective strategic communication and risk management.

The conference boasts keynote presentations from George Decesare, Senior VP and Chief Technology Risk Officer at Kaiser Permanente, Jane Harper, Director of Privacy & Security Risk Management at the Henry Ford Health System, CERT’s Matt Trevors, and M.K. Palmore, FBI San Francisco’s Assistant Special Agent in Charge of the SF Cyber Branch.

George Decesare heads up Kaiser Permanente’s cybersecurity, technology risk and compliance programs and identity and access management projects and ensures Kaiser Permanente continues to secure the ePHi of its 10.2 million subscribers. Decesare will be explain the current healthcare threat landscape and will be providing vitaladvice to attendees on how they can secure their own networks from an attack. He will also be speaking about how Kaiser Permanente runs its cybersecurity programs and manages risk.

While patients were previously strictly tied to a specific healthcare organization, now they are able to easily switch providers after a cybersecurity breach that exposes their private health information. Jane Harper will be explaining the importance of including consumerism in risk management probability models and will speak about techniques for risk management and how the evolution of healthcare has affected the risk environment.

Matt Trevors will be covering how healthcare groups can develop security policies that meet the requirements of the HIPAA Security Rule. In his speech, Trevors will explain whether simply adhering to HIPAA Security Rule requirements will be enough to prevent data violations. Trevors will also explain how healthcare groups can use the Center for Internet Security’s Critical Security Controls (CIS CSC) to help them meet HIPAA Security Rule requirements and will offer advice on the Cyber Resilience Review (CRR) – a free tool application can be used by healthcare organizations to assess their security programs.

M.K. Palmore will be providing an insight into the current healthcare cybersecurity attacks, including an up-to-the-minute summary of the latest threats, including phishing attacks, insider threats, and business email compromise scams. Palmore will be covering some of the recent FBI reviews and will explain how breaches happened and how they could have been stoppeed.  Palmore will also outline how healthcare groups can access the FBI’s considerable resources and use its data to prevent data violations.

The HIMSS Privacy and Security Forum will be heldat the Grand Hyatt Union Square, on May 11-12, 2017. Further information can be downloaded on this link.

Author: Maria Perez