Privacy & Security

Health execs rank employee awareness as greatest cybersecurity concern

Nearly 80 percent of executives said employee security awareness is their greatest concern. And that’s despite 85 percent indicating they have existing security awareness programs, a new Level 3/HIMSS Analytics study finds.
By Bill Siwicki
April 18, 2017
02:43 PM

Lack of employee awareness and education present the greatest security threat, according the 2017 Level 3 Healthcare Security Study. Even though 85 percent of respondents said they have educational programs in place, nearly 80 percent listed employee awareness as their top threat.

The Level 3 Survey of 125 health IT executives, conducted by HIMSS Analytics, also found that 95 percent of respondents listed electronic health records systems as having the greatest reliance on network uptime. Hospital interface systems ranked second (51 percent), ahead of remote patient monitoring (39 percent), communications systems (37 percent) and PACS storage (36 percent), the study said.

[Also: Phishing-as-a-service: White hats help but beware the dark web]

The vast majority of participating organizations employ multiple risk mitigation practices to protect data and systems: remote access/secure access controls (87 percent), employee security awareness programs (85 percent), and security consulting services like vulnerability assessments and penetration testing (75 percent), the study found.

 Learn more at Privacy & Security Forum San Francisco, May 11-12, 2017. Register here.​

A little over half of respondents in the study have practices such as DDoS mitigation (56 percent) or threat intelligence (55 percent) in place today.

“Healthcare organizations must remain vigilant against cybersecurity threats and leverage all of their resources effectively to ensure every individual knows their role,” said Bryan Fiekers, senior director of research services at HIMSS Analytics. “Security cannot become an out-of-sight, out-of-mind problem.” 

[Also: Cerber overthrows Locky as top ransomware menace]

Chris Richter, senior vice president, global security services, at Level 3 Communications, added that security threats the healthcare industry faces today are real and only increasing in volume and sophistication as bad actors continue to seek out coveted protected health information.

“Aside from fostering and maintaining a culture of security, which includes regular employee security training, healthcare organizations should implement a security governance framework and appropriate technology controls,” Richter said.

Twitter: @SiwickiHealthIT
Email the writer: bill.siwicki@himssmedia.com

Like Healthcare IT News on Facebook and LinkedIn

Topics: 
Data Warehousing, EHRs, Privacy & Security, Workforce

More regional news

Doctor smiles and waves into a laptop during a telehealth visit

VA plans to end telehealth copays and fund virtual care access in rural areas

By
Andrea Fox
November 14, 2024
HIT professional reviews information on a laptop outside a server room

ASPR seeks feedback on public health orgs' cybersecurity needs

By
Andrea Fox
November 13, 2024
Gabriel Jones of Proprio on AI

Artificial intelligence is enabling big advances in surgery

By
Bill Siwicki
November 13, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Doctor smiles and waves into a laptop during a telehealth visit
VA plans to end telehealth copays and fund virtual care access in rural areas

Most Read

Providence's inpatient telemedicine programs pack a powerful punch
The Light Collective amplifies its call for patient data rights
Atrium Health responds to new social engineering attack
Vendor Notebook: New cybersecurity and EHR performance upgrades 
HMIS integration with other public HIS sought and more India briefs
Particle Health files antitrust suit against Epic

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Valerie Rogers at HIMSS_Global Health Equity Week 2024
Technology and policy have a role to play in improving maternal health
Mike Relli at Knight Consulting_Global Health Equity Week 2024
New approaches to improving healthcare access for justice-impacted individuals
Jill Brewer at HIMSS_Healthcare Cybersecurity Forum 2024
What's the weakest link in organizational cybersecurity? Not what you might think
Richard Staynings at the University of Denver_Healthcare Cybersecurity Forum 2024
The challenges of safeguarding healthcare's 'data ocean'

More Stories

Marjorie Rosen at HIMSS_Global Health Equity Week 2024
HIMSS chapters offer a powerful channel for healthcare advocacy
Returning service member with daughter
HIMSS launches veterans health IT workforce program
Morgan L. Waller, RN, of Children's Mercy Kansas City on telemedicine
Deep dive: Exploring one of the most advanced telemedicine programs in the U.S.
Person on laptop at kitchen table with another who holds up prescription bottle for telehealth doctor
ATA calls on Congress to beat the telehealth deadline, as it preps for Trump's term
Anurag Mehta at Omega Healthcare_Physician working on laptop Photo by Dzonsli/E+/Getty Images
Clinician burnout can be reduced by virtual nursing
Healthcare worker and patient watching doctor on screen
Discover the potential ROI of bedside telehealth
HKUST Provost professor Guo Yike presenting their new health LLMs
Hong Kong university to test four genAI models in...
A doctor in a virtual consultation with a patient
China to pilot standards for virtual primary care