Privacy & Security

To get there, make it simple for patients to access, which is one of a triage of benefits that also include identity consent and security, says Janice Reese, program manager of FAST (FHIR at Scale Task Force).

Hospitals need to effectively utilize their cybersecurity staff with the various functions needed and decide what should be outsourced, says Lee Kim, senior principal of cybersecurity and privacy at HIMSS.

Adam Greene, attorney and partner at Davis Wright Tremaine, advises healthcare buyers on documentation for any potential red flags.

Scattered Spider suspects are between 19 and 22 and use sophisticated ransomware such as ALPHV Black Cat that was used on Change Healthcare and others, says Troy Adams, cyber engagement specialist at the U.S. Department of Health and Human Services.

Every country, every government is concerned with protecting data and training its workforce to be prepared for a cyberattack, says Tom Leary, senior vice president and head of government relations at HIMSS.

Laquan Black, assistant professor of Health Information Technology at Guttman Community College CUNY, says HIMSS Healthcare Cybersecurity Forum allows her to bring real-world issues back to the classroom.

The architecture to develop security programs is shifting as providers manage a larger number of partners in the supply chain and in hospital at home programs, says Anahi Santiago, CISO at ChristianaCare.

Component pieces of large language models can be used for information telemetry and analysis, says Darren Lacey, CISO at Johns Hopkins.

HIMSS found third-party risk management is the top weak link for IT leaders and executives, with most wanting AI powered threat detection, a solution usually not done inhouse, says Jill Brewer, market insights lead.

When Change Healthcare was attacked and Atlantic General couldn’t bill for a month, it helped bring the need for a robust cybersecurity system front of mind to board members, says Jonathan Bauer, CIO Atlantic General Hospital Health System.

AI solutions can help healthcare organizations strengthen their security posture, but Greg Young, VP of cybersecurity market strategy at Trend Micro, warns that use of unapproved, unsecured AI tools may put patient data at risk.

The attacks haven't changed but the interconnectedness of hospitals with each other and third parties means when one is impacted, the entire health system can be affected, says Dr. Benoit Desjardins, a professor at the University of Montreal.