News Room

Complying With New York’s SHIELD Act

October 11, 2019

What should healthcare organizations know about complying with the breach notification and data security requirements of New York’s SHIELD Act? And how does the new law compare with HIPAA? Jon Moore, chief risk officer at consulting firm Clearwater, explains.

Read More

5 critical components in protecting servers from breaches

October 8, 2019

Servers appear to be the Achilles heel of healthcare organizations’ data protection efforts. About 54 percent of all individuals affected by an information breach of a healthcare organizations were impacted by a breach involving that organization’s server, according to data on the breach portal of the Department of Health and Human Services’ Office for Civil Rights, culling security incidents from June 1, 2018, to May 31, 2019. A report this summer from Clearwater’s CyberIntelligence Institute says that, of the breaches in the previous 12 months, 90 healthcare breaches affecting more than 9 million individuals, were related to servers in some way.

Read More
Governance Institute

Cyber Risk Management: A Business Enabler (Not an IT Issue)

September 23, 2019

Cyber risk management is not an “IT problem”; it is an enterprise risk management matter that can be harnessed into a business enabler.

Read More

How the New York SHIELD Privacy Bill Impacts Healthcare Organizations

September 19, 2019

Reporting requirements of New York’s SHIELD Act go into effect on October 23; healthcare organizations that collect or use personal or private data from state residents will need to be in compliance.

Read More

NIST Proposes PACS Cybersecurity Guidance for Health Providers

September 17, 2019

Developed with industry leaders like Clearwater Compliance, Symantec, and others, new NIST guidance and a proposed project could help health delivery organizations secure the PACS ecosystem.

Read More
healthcare info sec

Mitigating the Risks Posed by Malicious Insiders

September 4, 2019

Every organization should understand their own unique risk profile based on the impact to their organization of a breach, the vulnerabilities that exist within their unique portfolio of information assets and all reasonable threats that might exploit those vulnerabilities including insider threats.

Read More
health data management

How state AGs are ramping up general HIPAA enforcement

August 19, 2019

Efforts by the federal Office of Civil Rights to investigate data breaches at healthcare organizations are of great concern to security and compliance officers at healthcare organizations.

Read More

Investing Wisely in Cybersecurity

August 14, 2019

Jon Moore, Chief Risk Officer at Clearwater Compliance LLC, based in Nashville, Tennessee, said the survey essentially reflected what he sees in the industry.

Read More

Press Releases

Clearwater Executive Chairman Bob Chaput To Keynote Healthcare Internet of Things Conference

Clearwater Executive Chairman Bob Chaput To Keynote Healthcare Internet of Things Conference Cyber Risk Management Expert to Share Insight on Medical Device […]

Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education

Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education Company’s IRM|Pro Software Prepares Students to Meet […]

Company Blog

Developing a More Secure PACS Ecosystem

The security of medical images took center stage this past week as Senator Mark Warner of Virginia demanded that TridentUSA and its affiliate MobileXUSA outline their cybersecurity practices after ProPublica reported the imaging firms left millions of medical records and patient data exposed online.

What the New York SHIELD Act Means for Healthcare Organizations

On July 25, 2019 the Governor of New York signed into law the “Stop Hacks and Improve Electronic Data Security Act” (SHIELD ACT) effective March 21, 2020.

The Rise of Enterprise Cyber Risk Management Software

The digital transformation of healthcare is rapidly driving the adoption of new technology and information systems to support key business initiatives. We are experiencing a veritable explosion in health care data, systems and devices.

Interested in how the solutions featured in this case study could help your organization?