HealthcareCISO

The HIPAA (Health Insurance Portability and Accountability Act) Security Rule demands that healthcare organizations have safeguards in place to ensure the confidentiality, integrity, and availability of data that qualifies as protected health information (PHI). Violators are financially — and sometimes criminally — penalized. Pleading ignorance of the rule, especially following a healthcare data breach, is not a valid excuse.

In the wake of a global pandemic, stay-at-home orders forced healthcare employees to move away from the more secure networks within hospitals, clinics, and medical centers, to the vulnerable networks of their homes. Therefore, healthcare executives were faced with the challenges of mitigating risks presented by the “new normal.”

While IT professionals quickly pivoted to...