On Thursday, February 5, 2015 the world woke to learn of the largest healthcare data breach to date. Approximately 80 million records were accessed and those records contained the following details: name, birthday, social security number, email and phone. In this story on Becker’s Health IT & CIO Review, eight security experts share their perspective on the situation. Below is an excerpt from the story, which features Synopsys’ John Steven.
“Given the complexity of operations in the healthcare industry and the variety of regulations, which focus heavily on identity and access management, an enormous amount of resources are spent on security architecture. As a result, successful attacks on healthcare organizations are even more surprising than attacks on retail or other industries. Organizations should focus more time and attention on hardening key systems rather than blanketing their entire portfolio with commodity assessments. Counter the threat with the correct weapon: SaaS scans aren’t ever going to stop concerted attackers. Analyzing one’s architecture and hardening systems by building security in will. The immediacy of the disclosure is also interesting. Companies are learning that the days of sitting on news are over and that delaying the news of your breach may impact your brand. Organizations are best served by getting out in front of breaches as soon as possible.”
You can read the entire article by visiting the Becker’s Health IT & CIO Review website.