ANZ
Privacy & Security

The need for new ways of protecting health data

By Staff Writer
April 17, 2019
12:00 AM

Despite increased industry efforts, healthcare is experiencing cyberattacks at an increasing rate. So what does the industry need to do to salvage the situation?

According to Forcepoint Information Security Senior Director Alvin Rodrigues, the industry needs to embrace new ways of protecting data.

At the recent Australian Healthcare Week conference, he mentioned that a behaviour-centric, analytics driven approach to cybersecurity is necessary.

“Having just a reactive mindset to cyber threats doesn’t work anymore. Cyber attackers have expanded the boundaries of attacks beyond the horizon of just the healthcare organisation to reach other players or partners of these organisations,” he said.

“Therefore, you need to consider how you get visibility of the landscape and as a result of that, how you control and manage access from a collaborative standpoint with compliance in mind. A risk-based approach ensures that cybersecurity is aligned to the way that the organisation is run.”

According to Rodrigues, healthcare has been the main target of hackers who are after patient information and credentials. Hacking and malware are the first points used to get these information and ransomware is on the rise, he said.

“Health information is more valuable than financial information because the shelf life of healthcare information is longer than financial information,” he said.

“If someone gets a hold of your credit card information, all you need to do is call your bank and deactivate it. But if that someone gets a hold of your health records, the person can take advantage of that in multiple ways.

“The lack of encryption and insider threats are also concerning. These are due to the way that hospitals are run. Many hospitals are still using outdated technology, resulting in these issues. In addition, doctors aren’t aware of cybersecurity – it’s still predominantly an IT department issue.”

In addition, with healthcare becoming increasingly connected, Rodrigues said hackers are more likely to target organisations because all data sits in one pocket.

[Read more: Reinventing data security with cryptographic technology | How important is medical device classification in a healthcare organisation’s cybersecurity strategy?]

As such, he said having risk adaptive protection is necessary and that it delivers: 

  • Dynamically, adaptively and automatically protects data and minimises data exfiltration
  • Identifies intentions through alerts of anything out of the ordinary 
  • Provides evidence for litigation 
  • Minimises friction between security and other departments
  • Home-required cybersecurity training and education
  • A corporate aware security culture. 

“We need to beef up our cybersecurity posture so that we can minimise the unknown threats that enter our organisations,” he added.

Data scientists, through the use of AI and machine learning will be able to understand human behaviour better when it comes to cyber attacks. Organisations that embark on this human-centric cybersecurity strategy moves processes away from one that is threat based to one that is risk and analysis based.”

Topics: 
Privacy & Security

More regional news

A pharmacist reviewing a digital record

Blooms The Chemist integrates Healthengine and more briefs

By
Adam Ang
November 17, 2024
A doctor reviewing a patient's file on a desktop computer

Monash's clinical AI collab with India's Apollo Hospitals and more briefs

By
Adam Ang
November 10, 2024
A doctor reviewing a patient's file on a desktop computer

ADHA to upgrade My Health Record maintenance

By
Adam Ang
November 06, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

A doctor reviewing a patient's file on a desktop computer
ADHA to upgrade My Health Record maintenance

Most Read

Vendor Notebook: New cybersecurity and EHR performance upgrades 
Particle Health files antitrust suit against Epic
Choosing a managed IT service for aged care
ASTP intros 2024 draft Federal FHIR Action Plan
CrowdStrike all but assures Capitol Hill: Never again
Korea's largest hospital bags APAC's first Stage 6 of new INFRAM

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

George Pappas at Intraprise Health_Digital shield and lock Photo by da-kuk/Getty Images
Tighter cyber mandates hold New York providers to higher security standards
Dr. Jay Anders at Medicomp Systems_Computer chip with stethoscope Photo by Just_Super/iStock/Getty Images Plus
Transparency and responsible AI are crucial for medical devices
Lee Kim at HIMSS_Global Health Equity Week 2024
AI can be leveraged to improve cybersecurity and health equity
Dr. Keisuke Nakagawa at UC Davis Health_Global Health Equity Week 2024
How artificial intelligence is changing the equation for SDOH integration

More Stories

HIMSSCast logo
HIMSSCast: Caregiver input needed for allocation of investment dollars
HHS Building
Trump picks RFK Jr. to lead HHS
Dr. Keisuke Nakagawa at UC Davis Health_Global Health Equity Week 2024
How artificial intelligence is changing the equation for SDOH integration
Sign outside FDA office
Lawmakers ask CDRH to revisit its CDS guidance
Former Georgia Rep. Doug Collins
Trump taps former Rep. Doug Collins to head VA
U.S. Department of Homeland Security seal
DHS intros framework for AI safety and security, in healthcare and elsewhere
Andrea Hsu at National Science and Technology Council_HIMSS24 APAC
Fostering health IT innovation through academic-industrial collaborations
Doctor smiles and waves into a laptop during a telehealth visit
VA plans to end telehealth copays and fund virtual care access in rural areas