Written by Guy McAllister, Director, Privacy & Security - iatricSystems
I think I want to stay in bed…Have you ever had one of those weeks when everything went wrong all week and every day was a Monday? The week of May 13th was one of those weeks for IT and cybersecurity. As I was reading throughout the week, I found articles about:
All this concerning news is a reminder that the war on cyber attacks takes a village. Hardware vulnerabilities is not something most of us can address, and truthfully, software coding for security patches are not in our realm of expertise; however, we do have responsibilities that are ours alone.
Why is Microsoft still concerned with Windows XP and Server 2003 and 2008? Because there are systems still using these outdated and unprotected OSs. Many are found in healthcare! Several years back, I remember being horrified at learning a medical device manufacturer in my hospital was using Windows 2000!
There is a new paradigm for healthcare systems that is saying to vendors; you will be responsible for the security of your medical device equipment and you must follow our organizational security policies, and you will be accountable for the devices you place on a network, and you will be responsible for following organizational remote access policies.
Here are a few tips for how you can manage the risks associated with doing business with vendors:
Remember, as a healthcare system or single hospital, or private practice; you are always responsible for protecting your data.
If you want to learn more about how to manage vendors, reduce your third-party risk, and increase your network security, I am hosting the live webinar "Manage Vendor Relationships and Reduce Your Risk" on August 8th at 2pm ET. Register now.