Health Security - An AEHIS Podcast Series

Imprivata Chief Medical Officer Dr. Sean Kelly sits down with Seattle Children’s Chief Information Officer Dr. Zafar Chaudry to discuss why patient safety depends on cybersecurity. Their conversation centers around the impact of healthcare technology, specifically cybersecurity, on clinical practice and patient care. The speakers discuss the importance of cybersecurity in the healthcare industry, the potential consequences of a cybersecurity breach, and best practices for cybersecurity in healthcare settings.

David Finn, VP, AEHIS, AEHIT, AEHADA, meets with AEHIS Board member, Dan Dodson, CEO, Fortified Health Security, and AEHIT Board member, Rachel Weissberg, Director Strategy Healthcare, North America, Neteera, to discuss the purpose of breaking down barriers between digital health disciplines.

David shares the reason why Healthtech Leader 3.0 is all about breaking down silos in healthcare and gets Rachel’s and Dan’s take on the importance of collaboration and why it “just makes so much sense.” The group discusses how the A-teams are pioneering a framework for how healthcare groups can come together to innovate and create solutions that improve healthcare for everyone in a practical way.

“Involving more people can sometimes be a little slower, but it’s better to get it right the first time.” - David Finn

Tune in to also learn why cybersecurity is vital to technology’s success, Rachel’s views on AI, plus why it’s important to involve clinicians in technology decisions. Don’t miss Dan’s ideas on the role of third-party technology providers in your organization’s business decisions.

HIPAA is a regulatory framework that has been around since 1996. HIPAA is written as a general framework to implement a minimum level of compliance for healthcare organizations. In this podcast, Mike Pietig, General Manager of CompliancePro Solutions and Chris Lyons, Director of Cybersecurity with CompliancePro Solutions will discuss the ongoing push to include more Cybersecurity elements into the compliance framework for healthcare organizations. They will provide an overview of the Health Industry Cybersecurity Practices (HICP 405(d)) framework, how it came to be, and included is a discussion on the 10 control areas that are included in the HICP Cybersecurity Best Practices.

In this podcast, Mike Pietig, General Manager of CompliancePro Solutions and Chris Lyons, Director of Cybersecurity with CompliancePro Solutions will discuss the implications of being compliant vs being secure. Compliance frameworks such as HIPAA are designed to ensure a minimum level of security is implemented into healthcare organizations. The discussion will talk about how the implementation of controls can make a company compliant but may not address the company’s security risks and concerns.

David Finn, Vice President of AEHIS, AEHIT, and AEHIA meets with Clearwater Compliance’s CEO, Steve Cagle, on all things ViVE and the current state of cybersecurity. Clearwater focuses on risk management and cybersecurity in healthcare with a mission to help healthcare organizations “move to a more secure, compliant, and resilient state” so they can achieve their healthcare missions. Steve shares thoughts on the unique energy of ViVE and how it brings together senior leaders from healthcare provider organizations, investors that support innovation in healthcare, as well as business partners. The cybersecurity pavilion at ViVE was sponsored by Clearwater, and Steve praises the pavilion for being engaging as well as ViVE for its atmosphere of collaboration. Steve and David chat about the ins and outs of cybersecurity today and the importance of keeping leaders focused on improvements in cybersecurity, which greatly impact care delivery and, ultimately, patient outcomes. Tune in now for insights from two industry leaders in healthcare cybersecurity!

In this episode, David Finn of AEHIS leads an expert security discussion with panelists: Shankar Somasundaram, Founder & CEO at Asimily; Steve Grimes, Managing Partner & Principal Consultant at Strategic Healthcare Technology Associates; and Axel Wirth, Chief Security Strategist at MedCrypt.

Managing healthcare cyber risk is a tall task that goes far beyond a hospital or health system's EHR. Jackie Mattingly, CISO for Owensboro Health, and Anthony Martinez, VP of Consulting Services for Clearwater, break it all down in this conversation about managing risk across a healthcare enterprise. The two cybersecurity leaders cover where unexpected risks can come from, how to keep a holistic view of information assets, forging the right relationships to embed cybersecurity best practices throughout the organization, and what it looks like when the OCR or the FBI shows up.

It seems there is no shortage of dashboards, warning signs, and "risks" that we receive in healthcare. But how do we know we are making the greatest impact on our cyber resiliency? Through this discussion between Saket Modi, the CEO and Co-Founder of Safe Security and Dee Young, AEHIS member and CISO at University of North Carolina, we learn about Cyber Risk Quantification and how we as healthcare leaders can quantify when a breach could occur in our environment and the potential dollar / operational impacts.

In this podcast episode, David Finn and Shankar Somasundaram, CEO and Founder of Asimily, discuss how to reduce IoMT vulnerability risk and plan an incident response program that includes these devices. Shankar’s journey to “healing the devices that heal” started over a decade ago when he realized that while device makers viewed risk differently than providers, they both shared the goal of keeping patients safe. Shankar also outlines some basic steps providers can implement to get ahead of the curve and secure the devices that drive healthcare before new devices are connected to the network.