Many of today’s most pressing cybersecurity challenges can be addressed with a prioritized list of cyber hygiene best practices. Explore the Critical Security Controls – selected and defined by the U.S. military, as well as other respected security experts in government and private organizations – which are rapidly becoming accepted as the most recognized action plan to secure an organization...
Having a robust information security program is not just a technical endeavor. Careful coordination of people, processes, and technology is a necessity. Senior management needs to support a healthcare organization’s cybersecurity efforts and collaborate with privacy and information security professionals in terms of tactics, techniques, and procedures.
This session will present the value propositions for medical device information sharing and discuss the barriers that continue to create challenges for information sharing. The medical device bill of materials and process of coordinated disclosure will be explained. The impact of these important cyber information sharing activities will be explained.
What is it like to defend your hospital network against sophisticated and determined hacktivists? A representative from Boston Children’s Hospital will explain his hospital’s strategy for defending against Anonymous and describe how his organization successfully survived the ordeal, as well as how it has evolved based on lessons learned.
Challenges to sharing of cybersecurity data are being addressed by the new Medical Device ISAO. This session will explain Executive Order 13691, discuss the National Medical Device ISAO Initiative co-led by NHSIAC and MDISS, and explain how the ISAO will contribute to scientifically robust data to inform regulatory policy.
No healthcare organization has perfect security and breaches cannot always be avoided. What you can do is to design and deploy a privacy and security program which is right for your organization, its mission, and resources. Plan for the best and worst case scenarios and adjust accordingly.
Medical device risk assessments support health system’s efforts to create secure medical device networks for patient safety and privacy. This session will explain methods for risk assessment across the device life cycle. It will explain how the medical device risk assessment platform (MDRAP) facilitates assessments, education of staff and assessment sharing.
A comprehensive security capability requires healthcare organizations to bring together representatives across the enterprise to address and align policies associated with not only information security, but also physical security, cyber insurance, contracts, biomedical device security, compliance and privacy.
This session will explain different types of vulnerabilities in medical devices; how they are identified; how vulnerabilities in third party libraries or components can be linked to devices, assessed, mitigated and shared.