Efforts by the federal Office of Civil Rights to investigate data breaches at healthcare organizations are of great concern to security and compliance officers at healthcare organizations.Read More
Although the healthcare industry has been notoriously resistant to change, its transformation at the hands of digitization has recently picked up pace.Read More
Olean Medical Group CEO Christine Strade received a text June 11 telling her the group’s electronic medical record system was down. That’s how she learned her company had been cyber-attacked.Read More
Every CISO knows that April, 2019 was a grim milestone: the worst month for healthcare data breaches
since 2010, when the Office for Civil Rights began reporting healthcare data breaches of 500 individuals
or more publicly. In April, 44 breaches were reported and the medical records of nearly 700,000 people
A new report from KLAS and CHIME find that while large organizations are becoming more sophisticated in their cybersecurity strategies, smaller providers are not keeping pace with governance, risk management, and other security elements.Read More
Clearwater is proud to announce that Executive Chairman Bob Chaput has been invited to be part of the faculty for a new professional certificate program offered by the University of Texas. Titled Leadership in Healthcare Privacy and Security Risk Management, the first-in-the-nation certificate is designed to help fill the acute need for a trained, non-technical workforce to protect healthcare systems in Texas and our nation from fast-evolving cybersecurity threats.Read More
Identity and access management continues to be a top medical device cybersecurity challenge, says security expert Mark Identity and access management continues to be a top medical device cybersecurity challenge, says Clearwater security expert Mark Sexton. “A number of these devices cannot be integrated into normal technical controls, like Active Directory, that you use on your network to manage user access and monitor that activity,” he notes in an interview with Information Security Media Group.Read More
Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education Company’s IRM|Pro Software Prepares Students to Meet […]
Clearwater, a top-ranked provider of healthcare cyber risk software and consulting services, today announced the appointment of Cathie Brown as Vice President, Professional Services. Ms. Brown brings more than 30 years of experience in healthcare, health information technology, health information security and consulting.
In the first half of 2019, there were 223 reported breaches affecting 10.2 million individuals, an increase of 167% over the same period in 2018. These figures do not include the widely publicized American Medical Collections Agency breach, which is estimated to have affected at least 22 million individuals on its own.
In the case of American Medical Collection Agency’s (AMCA) highly publicized data breach, the cost proved unrecoverable as the 42-year-old parent company Retrieval-Masters Credit Bureau filed for bankruptcy just weeks after disclosing the breach.
Organizations should calculate the risk of a data breach, not only for covered entities but also for their business associates. A breach of your patient data will affect your organization, even if it’s by a business associate.
Many Chief Information Security Officers and Chief Compliance Officers often express concern to us about the potential disruption and cost that can come from an Office for Civil Rights (OCR) investigation, not to mention the reputational damage that will result from a settlement or monetary penalty. An appearance on the wall of shame is a mere blemish compared to the negative publicity of an OCR fine or settlement. However, the possibility of a State Attorney General (AG) action is often underestimated and overlooked. If a State AG enforcement is not top of mind for you and your board, it should be.