A cybersecurity strategy is mandatory nowadays for every hospital that cares about its patient information, but this doesn't mean that it is easy or that there is a recipe that someone can follow. This session will show how to use the NIST Cybersecurity Framework and the HITRUST CSF to address the policies, technology acquisition and people training that has to be done in order to successfully achieve the goal of securing the patient's information, protect the availability of the infrastructure and be law compliant.
Identify the main components during the implementation of a cybersecurity strategy in a hospital
Design a working plan for the implementation of a cybersecurity strategy in a hospital
Discuss the differences between the NIST Cybersecurity Framework and the HITRUST CSF
Share the experience of a hospital in the process of implementing a cybersecurity strategy
Classify the processes, people and technology that apply to each category of the cybersecurity framework