Healthcare: Is the Cyber Threat Real? President Obama has identified - - PowerPoint PPT Presentation

healthcare is the cyber threat real
SMART_READER_LITE
LIVE PREVIEW

Healthcare: Is the Cyber Threat Real? President Obama has identified - - PowerPoint PPT Presentation

May 30, 2023 271 likes •361 views

Healthcare: Is the Cyber Threat Real? President Obama has identified cybersecurity as one of the most serious economic and national security challenges we face as a nation..!Whitehouse.gov Dr. Emma Garrison-Alexander Vice Dean, Cybersecurity

slide-1
SLIDE 1
  • Dr. Emma Garrison-Alexander

Vice Dean, Cybersecurity and Information Assurance University of Maryland University College April 22, 2016

President Obama has identified cybersecurity as one

  • f the most serious economic and national security

challenges we face as a nation..!Whitehouse.gov

Healthcare: Is the Cyber Threat Real?

slide-2
SLIDE 2

U.S. Critical Infrastructure – 16 Sectors

Chemical Commercial Communications Critical Manufacturing Dams Emergency Services Defense Industrial Base Energy Financial Food & Agricultural Government Facilities Healthcare & Public Health Information Technology Nuclear Water & Waste Transportation

slide-3
SLIDE 3

Legal Requirements

  • Health Insurance Portability & Accountability

Act (HIPAA) - 1996

– Protection of patient’s privacy & health information

  • Health Information Technology for Economic

and Clinical Health (HITECH) – 2009

– Promote use Electronic Health Records – Strengthen the civil and criminal enforcement of HIPAA – Breach Notification

  • The Omnibus Rule – 2013

– Enhances patient’s privacy protections – Provide individuals new rights to their health information – Strengthens government’s ability to enforce the law – Holds business associates, contractors, etc. accountable for privacy and data protections

slide-4
SLIDE 4
  • Healthcare is the most targeted sector
  • Healthcare Information Comprise in U.S.

– 47% of population

– Timeframe: last 12 months

  • Breaches against 16 sectors

– 888 total incidents reported – 188 or 21% in healthcare industry

  • Who is targeted in Healthcare

– 72% targeted healthcare providers – 10% targeted healthcare business associates – 6% targeted health plan organizations – 12% of traffic pharmaceutical companies, healthcare information clearinghouses, and other healthcare entities

http://icitech.org/wp-content/uploads/2016/01/ICIT-Brief-Hacking-Healthcare-IT-in-2016.pdf

Healthcare Attacks by the Numbers

slide-5
SLIDE 5

Three Case Studies

Hospital Pays $17,000 in Ransomware Attack 22 Million Personnel Comprised MedStar Health Hacked

slide-6
SLIDE 6

Cyber Impact to Healthcare

Healthcare Impact

  • Cannot Change Blood Type
  • Cannot Change Medical

Condition

  • Cannot Change DNA
  • Once information is Exposed,

It Is Forever

Financial Impact

  • New Bank Account Number
  • New Credit Cards
  • New Social Security Number
  • New Credentials –

login/password

  • Account Protection
slide-7
SLIDE 7
  • Prevent a cyber attack – Vulnerability assessments

– Network mapping tool, scanning tool – Network protocol analyzer – Patch Management – Data Encryption – Background investigations (Insider Threat) – Multifactor authentication – Identity management – Least privilege – Anti-virus software – Redundant and failover systems

  • Detect a cyber threat or attack – recognize problem

– Network Intrusion Prevention/Detection System

  • Mitigate a threat or cyber attack – respond to a attack;

analyze, report, recommend

– Forensic Tools – Digital Investigation

Cyber Tools & Technology

slide-8
SLIDE 8

QUESTIONS????