Snooping staff still a big concern

Healthcare groups show modest security improvements, but are still seriously lacking in several areas
By Erin McCann
February 20, 2014
10:53 AM
The findings of a new HIMSS healthcare security report have been released, and the data may surprise you. 
 
Healthcare organizations appear to be taking patients' privacy and security a bit more seriously -- at least in the past 12 months, compared to previous years. Don't be too relieved, however: The numbers, though better, are hardly impressive. 
 
Moreover, there are still some big time concerns. Employee snooping on patients' medical records, for example, remains the top threat motivator, according to the study.
 
 
The findings of the 2013 HIMSS Security Survey, profiling the experiences of some 283 healthcare IT security professionals, detail improvements the industry has made with making privacy and security an issue -- perhaps because of the hefty $810,000 price tag that accompanies a healthcare security breach -- but also highlights additional work that must be done to mitigate insider threat, such as the inappropriate access of data by employees. 
 
Some 51 percent of healthcare groups have increased their security budgets in the past year, but nearly half of those organizations are still spending 3 percent or less of their overall IT budget on security initiatives that will secure patient data. Also in the last year, 19 percent of respondents reported a security breach, and 12 percent of organizations have had at least one known case of medical identity theft reported by a patient.

[See also: HIPAA data breaches climb 138 percent.]
 

Recognizing inappropriate data access by insiders as an area at risk of a security breach, healthcare groups have been increasingly utilizing several key technologies related to employee access to patient data, including user access control and audit logs of each access to patient health records. 
 
Just this past December, the five-hospital Riverside Health System in Southeast Virginia notified 1,000 of its patients they were affected by a HIPAA breach after discovering one of its employees had been snooping on patient records for four years. 
 
 
"Healthcare organizations are increasingly deploying technologies to increase data security, but continued analysis is crucial in ensuring the proactive prevention of data breaches within hospitals and physician practices," said Lisa A. Gallagher, vice president, technology solutions at HIMSS in a press release. "Without these anticipatory measures, security of patient data will remain a core challenge within our nation's healthcare organizations."
Topics: 
Privacy & Security

More regional news

Dennis Chornenky of UC Davis Health on chief AI officers

Chief AI Officer: Healthcare's hot new role demands a rare combination of skill sets

By
Bill Siwicki
October 31, 2024
Doctor looks at a desktop computer screen in a medical office

Vendor AI Roundup: Enhanced EHR offerings designed to give practices a leg up

By
Andrea Fox
October 31, 2024
Greg Garcia of HSCC at the HIMSS Healthcare Cybersecurity Forum

Work like 'a beehive, an ant colony' to protect against cyber intruders

By
Mike Miliard
October 31, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Dennis Chornenky of UC Davis Health on chief AI officers
AI & ML Intelligence
Chief AI Officer: Healthcare's hot new role demands a rare combination of skill sets

Most Read

CommonWell adds new network members, interoperability advancements
Joint cybersecurity advisory warns of Iran-based attacks
M&A roundup: Siemens to buy Novartis imaging for $223M, and more
How AI is transforming cybersecurity, on defense and offense
Generative AI is this CISO's 'really eager intern'
HIMSSCast: Toward safer and more secure use of AI

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Dr Der-Yang Cho at China Medical University Hospital_HIMSS24 APAC
A Taiwanese hospital's commitment to healthcare AI
Dennis Chornenky at UC Davis Health_PART 1_AI in healthcare concept art Photo by Just_Super/E+/Getty Images
Healthcare chief AI officer requires rare combination of skills
Dr. Don Rucker at 1upHealth_Physician at laptop with medical data Photo by Tippapatt/iStock/Getty Images Plus
Looking under the hood of Medicare Advantage star ratings
Yiannos Tolias at DG Sante_HIMSS24 Europe
How the EHDS and AI Act will advance European healthcare AI developments

More Stories

Wes Whitaker of Premise Health on data analytics
Premise Health scores big with data ingestion and analytics technologies
Laptop on a mans lap sitting on an oak wood floor
HC3 alerts providers of Scattered Spider threat
Dugan Winkie at Cedar_Stethoscope over coins and calculator Photo by Max Zolotukhin/iStock/Getty Images Plus
Patient engagement gets a boost with AI-enabled call center
Oracle booth
Oracle Health to apply for QHIN status
FirstHealth of the Carolinas, Stephen Kapa, telehealth
How FirstHealth is improving outcomes with observation at home
Woman reviews medical imaging on a desktop computer
NHS to roll out radiology AI across 10 health trusts
Maite Malet at Asabys Partners_Diagonal arrows concept graphic Photo by Eightshot Studio/iStock/Getty Images Plus
What Asabys Partners plans to do with its $200M raise
Team behind SNUBH's HIMSS Stage 6 AMAM validation
Seoul National University Bundang Hospital bags Stage 6...