Join us for this episode of The CyberPHIx podcast, where we hear from Morgan Hague.   Morgan is the manager of IT Risk Management at Meditology Services and has been in the industry for nearly a decade. He has worked with hundreds of organizations in an advisory capacity helping to assess or audit security functions to drive program maturity. He also leads Meditology’s strategic risk management consulting service line and is a subject matter expert in threat mitigation and risk program development.  Topics covered in this session include:   A deep dive into the emergi ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  The Changes to HHS 405(d) HICP publication on the top 5 threats and top 10 security practices for healthcare  The NIST Cyber Security Framework 2.0 Discussion Draft   The riskiest connected medical devices and IoT (including nurse call, infusion pumps, and IP came ..read more

Join us for this episode of The CyberPHIx podcast where we hear from Ryan Patrick, Vice President of Adoption at HITRUST.   Ryan works with clients to understand and implement the HITRUST-validated assessments that best suit their organization’s risk profile. Prior to this role, he spent many years as a security practitioner and IT lead in a wide range of organizations from the US Army to Covered Entities to healthcare cybersecurity consulting firms. He has a wealth of practical security experience that informs every discussion about security or HITRUST.   Topics cover ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  Our host Britton Burton spends this entire episode reviewing and analyzing the recently released National Cybersecurity Strategy, including:  Summarizing, and in some cases quoting, the key points from the document that are most relevant to healthcare security pros who may have time to listen but not read  Analyzing how those key points will affect the healthcare industry in the coming months and year ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  The Federal Trade Commission’s (FTC) first Health Breach Notification Rule Enforcement action against GoodRx  An unsurprising report from OCR on security rule compliance areas that HIPAA-regulated entities need improvement plus the most common remediation actions taken by breached en ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  The Federal Trade Commission’s (FTC) first Health Breach Notification Rule Enforcement action against GoodRx  An unsurprising report from OCR on security rule compliance areas that HIPAA-regulated entities need improvement plus the most common remediation actions taken by breached en ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  A new National Cybersecurity Strategy coming from the Biden administration in the next few weeks  Healthcare cybersecurity legislation with mandatory requirements coming from Senator Mark Warner by the end of 1Q  More ChatGPT analysis on malware writing and that it is NOT suitab ..read more

The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  New FDA authority granted by December’s omnibus bill is a big step towards better medical device security  HITRUST teases their new CSF v11 release  CommonSpirit Health class action lawsuit  The fallout from the LastPass follow-on breach  The possibly similar situation ..read more

The CyberPHIx is your source for keeping up with the latest cybersecurity news, trends and industry leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights some bold, and some not so bold, predictions for healthcare cybersecurity in 2023. Topics covered include:  Continued escalation and evolution of ransomware attacks  Our growing dependency on cloud platforms and vendor solutions shifting the attacker’s focus and changing breach trends  New baseline expectations for critical infrastructure cybersecurity that could ..read more

Who is responsible for cybersecurity? It’s a simple question, but the answer may be more complex than you think. Listen in to this episode of The CyberPHIx as we sit down with TJ Mann, Chief Information Security Officer at Children's Mercy Hospital in Kansas City. TJ helps us understand why it takes a cyber village to protect healthcare organizations. We delve into the roles and responsibilities that various stakeholder groups need to play to support and deliver effective information security programs. Highlights of the discussion include: Which specific roles and stakeholders have the greate ..read more