Cybersecurity in Healthcare - How to Prevent the Next Attack

MentorHealth
Duration: 60 Minutes
Instructor: Brian Freedman
Webinar Id: 801231

Recorded

$179.
One Attendee
$379.
Unlimited Attendees ?

After the webinar, you will have the insight to take your cybersecurity program to the next level, Are you prepared if your network becomes infected? Do you understand what your IT department is doing to protect against these attacks? What about understanding the current threats to your organization? also, you will have a much deeper understanding of why your organization and its data are attack targets and what the malicious individuals are after.

Overview:

With the ever-changing landscape of cybersecurity, there are many threats, vulnerabilities, and malicious individuals trying to take down your network or get access to ePHI. With ePHI being the most valuable data on the dark web sometimes selling for over $100 per record, the bad people are targeting your organization.

We will first look at what are the different types of risk, threats, and vulnerabilities on ePHI and methods to keep your data secure. We will talk though topics such as why spectre and meltdown while not a problem today, could be the cause of the next big attack. Other attacks such as ransomware, phishing, social engineering, and insider attacks will discussed to help you better understand these threats and what you need to be doing to prevent them. In addition, we will take a brief look at medical device vulnerabilities and the importance of keeping those devices secure.

Vulnerability management will be discussed and how to use it as a valuable tool to keep your organization protected. If your IT department is not deploying patches and updates to your software and infrastructure it could end up be the cause of a breach or worse a ransomware attack.

Having an incident response plan will be critical to not only have, but to have tested so when you do experience a breach or potential attack you know what to do. In addition, we will look at the importance of having a Disaster Recovery / Business Continuity Plan and how it might be necessary to declare a disaster after an incident. After the webinar, you will have the insight to take your cybersecurity program to the next level.

Why should you Attend: New threats and vulnerabilities appear in the wild daily. Are you prepared if your network becomes infected? Do you understand what your IT department is doing to protect against these attacks? What about understanding the current threats to your organization?

After attending the webinar, you will have a much deeper understanding of why your organization and its data are attack targets and what the malicious individuals are after. With an understanding of the threats, you will be able to plan and prepare so you are ready when you are compromised.

Areas Covered in the Session:

  • Risks, threats, and vulnerabilities on ePHI
  • The confidentiality, integrity, availability (CIA) triad
  • Why you should be afraid of spectre and meltdown
  • Ransomware and what to do if infected
  • Social engineering and phishing
  • Insider attacks
  • Medical device vulnerabilities
  • Importance of patch management
  • Incident Response
  • Disaster Recovery / Business Continuity Planning
  • Tabletop exercises

Who Will Benefit:
  • Providers
  • Health Care Professionals
  • Compliance Officers
  • Business Associates
  • IT Professionals

Speaker Profile
Brian Freedman , MS, CISSP, PMP, CHCO has earned his Masters of Science in Information Systems and has over 20 years working in IT and Information Assurance. Mr. Freedman leverages deep project management and technical experience in order to lead key elements to several Health-Information Technology (IT), Privacy and Security initiatives.

Mr. Freedman has hands-on experience with both the public and private sector healthcare networks and systems: He has worked at one of South Carolina's largest independent physicians practice, as its CIO and Information Technology Director. In his role as CIO, he was responsible for the oversight of all operational and technology functions for 33 Primary Care Physician offices and Specialist clinics. He served as the HIPAA Compliance Officer and managed a team of IT specialists in support of electronic medical records and practice management systems. He drafted and/or rewrote all related policies and procedures for the HIPAA final rule, and designed and delivered a HIPAA training program to more than 650 employees. Mr. Freedman also created and implemented an annual risk management / analysis program to focus on both HIPAA and Meaningful Use compliance. The risk management program developed by Mr. Freedman has provided the practice with a continuous risk management program.

He has co-authored a book on PCI Compliance and is the Technical Editor of a handbook on IT Regulatory and Standards Compliance. In addition, Mr. Freedman is an Adjunct Instructor for the Department of Network Systems Management at a local Technical College where he teaches classes in Information Systems, Networking, Information Assurance, and Regulatory Compliance (HIPAA and PCI). He holds some of the leading industry certifications from Microsoft and Cisco. He is also a CISSP, PMP, and is a Certified HIPAA Compliance Officer (CHCO).


You Recently Viewed