What do all team champions have in common? It doesn’t matter if we’re talking about football, baseball, basketball, hockey, soccer, cricket or just about any other team sport. With few exceptions, the champion is extraordinarily competent at both offense and defense.
Think about healthcare. Offense is a given. There are frequent C-Suite discussions about new services, attracting the best clinical talent, effective community outreach and the like.
What about defense? Sure, providers have whole departments to reduce risk in its many insidious forms, but playing defense in the SRC (security, risk and compliance) arena just isn’t as sexy as playing offense. Unfortunately, mistakes on the defensive side of the ball can wipe out years of good offense work.
With this pleasant thought, let’s turn out attention toward data security. Doesn’t it seem like data breaches happen disproportionately in healthcare? I haven’t seen any definitive numbers to prove this point, but I am convinced healthcare breaches are more common because of the shear amount of healthcare data being put on computers and into the cloud.
According to peer60, 96% of hospitals claim health information security is a huge priority for them.
Key findings include:
- There are multiple obstacles to security, risk and compliance but key challenges revolve around lack of budget and non-compliant employees.
- While lack of budget is an issue for most providers, it is especially so for smaller hospitals.
- Although total threat prevention is daunting, significant optimism exists, especially at the manager and director levels. While 54% of CIO’s said threat prevention is impossible, only 22% of security managers and directors responded the same way. This is good news!
- Hospitals with 500+ beds see fault with the underlying security weakness of Healthcare IT systems, not their SRC efforts.
I would like to invite you, your compliance officer, CSIO, CIO, CFO and any other appropriate team members to dedicate an hour to improving your game on the defensive side of the ball. Sure, offense is sexy. But, as winning coaches know, defense wins the game and ensures your healthcare organization’s long-term safety.
Join me for Aegify’s next helpful webinar, “HIPAA Omnibus: How to do Security Risk Analysis” on Tuesday July 7 at 11am PT. This valuable webinar is designed to help you analyze and quantify your security risk and give you a practical roadmap for risk reduction and compliance for today and tomorrow. As a special bonus, we’ll outline the Aegify disruptive SRC solution that can save your organization up to 80%.
To register for this webinar, please click HERE. On behalf of all of us at Aegify, we look forward to your participation on Tuesday, July 7 at 11a PT.
Co-Founder & CEO, Aegify Inc., Cupertino, CA, USA
Aegify’s comprehensive, unified platform uniquely operates at the intersection of security, risk and compliance for healthcare providers and their business associates. Discover what more than 400 other organizations already know: Aegify is the affordable, disruptive solution for IT security and compliance management, vulnerability analysis and risk management.
Aegify earned the highest rating of 5 out 5 stars by SC Magazine for Features, Performance, Documentation, Support and Overall Rating (June 2014).