Session ID: 
181

Balancing Costs for Resource Intensive Remediation

2:30pm - 3:30pm Wednesday, March 11
Orlando - Orange County Convention Center
W304A

Description

Despite the high value of patient data and the increased costs and frequency of breaches it is often difficult to quantify the required resources to remediate medical device vulnerabilities. A single large health system may include 30,000-40,000 pieces of clinical equipment from over 3,000 medical device manufacturers, spanning roughly 8,000 in make and models. Clinical equipment vulnerability remediation even with vendor support, careful planning and attention to resources is a must so there is no impact to patient care services or the normal workflows of stakeholders. This increase in required resources and attention to downtime can be difficult to justify to senior leader management, even when automated tools and high availability designs are both common and expected. This session will focus on how health systems can build partnership with other stakeholders in the clinical equipment ecosystem, in order to quantify vulnerability remediation. Vetted practices and approaches will be discussed during this session.

Learning Objectives

  • Assess security vulnerability risk using quantitative methods
  • Estimate costs of labor and for vulnerability remediation
  • Construct internal processes for making risk mitigation decisions

Speaker(s)

Quality & Compliance Program Director, Technology Management/ ENTECH,
Banner Health
Chief Security Strategist,
MedCrypt

Continuing Education Credits

ABPM
1.00
CAHIMS
1.00
CME
1.00
CNE
1.00
CPHIMS
1.00
IAPP
1.00

Audience

CIO/CTO/CTIO/Senior IT
CISO/CSO
Clinical Engineering Professional

Level

Intermediate