(Virtual Zoom)
Session Description
Lawmakers introduced the Healthcare Cybersecurity Act of 2022 to improve cybersecurity across healthcare organizations. This act encourages cybersecurity training for the healthcare sector. Healthcare organizations have different specialized information systems, such as electronic health record systems, etc., and increasingly adopt the Internet of Medical Things, such as internet-enabled medical equipment and devices, to improve patient care and accessibility to care. So, it is vital to protect data, the confidentiality of patient information, and technologies that play critical roles in revolutionizing healthcare from unauthorized access. Furthermore, the current crisis in Ukraine can potentially increase the cyberattack risks in the healthcare industry.
In 2021, healthcare attacks hit 45 million individuals, up from 34 million in 2020 (Landi, 2022). According to an IBM report, the average cost of a healthcare data breach (average breach size of 25,575 records) is $15 million in the United States (She et al, 2020). Cyberattacks make a weighty cost, including the loss of revenue, regulatory fines, litigation, ransom paid, the expense of response and recovery, reputation of the organization, and loss of public trust. Also, cyberattacks compromise patient safety, quality of care, and outcomes due to hospital equipment and devices connected to the Internet. Therefore, proactive cybersecurity, starting with security awareness training and security practices, is the top priority and saves healthcare organizations from data breaches.
References:
Landi, H. (2022). Healthcare data breaches hit all-time high in 2021, impacting 45M people. Fierce Healthcare. https://www.fiercehealthcare.com/health-tech/healthcare-data-breaches-hit-all-time-high-2021-impacting-45m-people
Seh, A. H., Zarour, M., Alenezi, M., Sarkar, A. K., Agrawal, A., Kumar, R., & Ahmad Khan, R. (2020). Healthcare data breaches: insights and implications. In Healthcare (Vol. 8, No. 2, p. 133). Multidisciplinary Digital Publishing Institute.
Objectives
Moderator:
John Fowler II, CISSP, HCISPP, Deputy Information Security Officer, Henry Ford Health
Panelists:
Ash Goel, MD, MBA, Senior Vice President & CIO, Bronson Healthcare
Geeta Kapoor, PhD, MS, MBA, Vice President & Chief Information Security Officer, Beaumont Health
Jon Ford, MS, PMP, LPEC, CRISC, CISM, CISSP, GSTRT, GCTI, GCCC, GISP, GCIH, GSEC, CIAM, CISM, Managing Director, Global Government Services & Insider Threat Risk Solutions, Mandiant
Time: Noon – 1:30 p.m. (Virtual Zoom)
Fees:
$25 – MCACHE Member
$35 – Non-Member
$10 – Student
{Earn 1.5 ACHE Face-to-Face credits}
*You must attend the entire session to earn the credits.
Registering for this program is a two-step process:
1) Purchase a ticket through Constant Contact: https://conta.cc/3NVoXsl
2) You must register on the ACHE platform to have access to the login credentials and credits. There is no additional cost associated with this second step. If you are NOT an ACHE member you will “create an ACHE.org account”, but you don’t have to become a member.
Registration will close at 11:59 p.m. on August 22, 2022.
USE OF MOBILE DEVICES: If attendees are using an iPad or other mobile device, they may be prompted for a passcode to enter your chapter event. The passcode is ACHE (case sensitive). This passcode is included in the confirmation emails registrants receive upon completing the registration process on ache.org, so please make sure not to share the passcode in any communications.