Privacy & Security (279)

The current HIPAA rule lays the groundwork for a new forward-looking approach as the stakes are ever higher, says Ferdinand Hamada, managing director of Healthcare, Pharma & Life Sciences (HPLS) sector at MorganFranklin Cyber.

Karly Rowe, interim president of Inovalon's provider business unit, says that, after the Change Healthcare breach, healthcare organizations are diversifying their buying strategies and asking about vendors' cybersecurity policies.

Lee Kim, senior principal of cybersecurity and privacy at HIMSS, says 2024's healthcare cybersecurity incidents highlighted third-party vendor risk and the need to prepare business continuity plans and tabletop exercises in case of attack.

The new security rule is very specific on required technical controls, but it can also help to better position healthcare organizations to manage their third-party risks, says Garrett Weber, Akamai Technologies field CTO for enterprise security.

Tjasa Zajc, special advisor for HIMSS and moderator for the HIMSS25 Global Leaders Exchange panel, says a digital health literacy maturity model would aid in training and inspiring staff to adopt new tools and cybersecurity practices.

Scott Mattila, COO at Intraprise Health, says 23% of all cyberattacks are against healthcare organizations and warns that AI enables more sophisticated phishing and smishing tactics.

Tom Leary, HIMSS SVP and head of government relations, discusses his department's plans for working within the U.S. and with other countries on AI, cybersecurity, digital health transformation and workforce development.

At HIMSS25 Nate Couture, the University of Vermont Health Network CISO, will join Tamer Baker, Zscaler's healthcare chief technology officer scaler, to talk through how zero trust played its part in a breach recovery.

Cutting-edge technology can reduce the cost of compliance and achieve a more efficient outcome, says Eric Avigdor, chief product officer of Votiro.

Van Steel, shareholder in LBMC's cybersecurity division, discusses his work with the HIMSS Tennessee chapter to help protect users' healthcare data and why that personal and private data is so valuable to cybercriminals on the dark web.

Claroty's Ty Greenhalgh and St. Luke's University Health's Mike Powers say they will explore challenges like aligning on the timing of patches and creating governance in a global conference session.

The year ahead offers continued challenges and opportunities around cybersecurity, AI and automation, patient experience and more, says the chief digital and information officer, who discusses his to-do list for 2025.