Clearwater Executive Chairman Bob Chaput To Keynote Healthcare Internet of Things Conference Cyber Risk Management Expert to Share Insight on Medical Device Security and Patient Safety at Invitation-Only Thought Leadership Summit NASHVILLE, Tenn. (Oct. 10, 2019) – Clearwater, the leading provider of Enterprise Cyber Risk Management and HIPAA compliance software and consulting services for the healthcare industry, […]Read More
Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education Company’s IRM|Pro Software Prepares Students to Meet Healthcare Industry’s Need for Professionals Skilled in Enterprise Cyber Risk Management Aug. 22, 2019 NASHVILLE, Tenn. (Aug. 22, 2019) – Clearwater, the leading provider of cyber risk management and HIPAA compliance solutions, is addressing the […]Read More
Clearwater, a top-ranked provider of healthcare cyber risk software and consulting services, today announced the appointment of Cathie Brown as Vice President, Professional Services. Ms. Brown brings more than 30 years of experience in healthcare, health information technology, health information security and consulting.Read More
Clearwater Further Streamlines Enterprise Risk Analysis for Health Systems with Its Patent-Pending “Component Expert System” Technology
As the healthcare industry continues to be targeted by cyber attacks, Clearwater has released new, breakthrough technology that provides hospitals and health systems with a more intelligent view into all of the processes, people, locations, technology and components that can pose a data security risk to an information system. Clearwater’s new Component Expert System (CES), embedded in its IRM|Analysis™ software, enables hospitals and health systems to complete the security risk analysis (SRA) process more efficiently across the enterprise by logically grouping similar information system components based on their properties and associated controls. The patent-pending technology automatically identifies relevant cyber and information risk scenarios, thereby facilitating a more effective risk assessment process.Read More
Clearwater CyberIntelligence Institute® Study Finds Laptops Still a Significant Data Security Risk for Hospitals and Health Systems
Endpoint data loss, excessive user permissions, and dormant accounts make up 70 percent of all high and critical risk scenarios for laptop vulnerabilities at hospitals and health systems across the country, according to new findings released by the Clearwater CyberIntelligence Institute (CCI), which leverages insights from Clearwater’s proprietary database—the industry’s largest and most complete database focused exclusively on the unique cybersecurity risk profiles of hospitals, Integrated Delivery Networks (IDNs) and business associates. Despite efforts to make laptops more secure, the CCI study found they remain a Top 10 cybersecurity risk for hospitals and health systems.Read More
Clearwater, Digital Reasoning Launch Strategic Multi-Year Cyber Risk Partnership Advancing AI, Machine Learning in Healthcare
NASHVILLE, Tenn.–(BUSINESS WIRE)–Clearwater and Digital Reasoning today announced a strategic three-year Cyber Risk Services partnership enabling healthcare providers to realize the results of artificial intelligence (AI) powered solutions supported by a proven and trusted cybersecurity and HIPAA compliance program.Read More
Top Three Most Common Health System Patient Data Security Weaknesses Revealed by Clearwater CyberIntelligence Institute®
Top Three Most Common Health System Patient Data Security Weaknesses Revealed by Clearwater CyberIntelligence™Institute December 20, 2018 NASHVILLE, Tenn.–(BUSINESS WIRE)–The three most critical and common high-security cyber risks facing healthcare delivery organizations and their partners have been uncovered in a first-of-its-kind analysis by the Clearwater CyberIntelligence Institute® (CCI). CCI was formed earlier this year to […]Read More
Clearwater and CyberMDX Announce Partnership to Address Healthcare Industry’s Weakest Link in ePHI Security Chain: Connected Medical Devices and IoT Equipment Innovative Approach Establishes Blueprint for Medical Device Security Programs to Help Protect Patients from Cybersecurity Threats and Vulnerabilities November 28, 2018 NASHVILLE, Tenn.–(BUSINESS WIRE)–Clearwater and CyberMDX have entered into a partnership to […]Read More
In The News
What should healthcare organizations know about complying with the breach notification and data security requirements of New York’s SHIELD Act? And how does the new law compare with HIPAA? Jon Moore, chief risk officer at consulting firm Clearwater, explains.
Servers appear to be the Achilles heel of healthcare organizations’ data protection efforts. About 54 percent of all individuals affected by an information breach of a healthcare organizations were impacted by a breach involving that organization’s server, according to data on the breach portal of the Department of Health and Human Services’ Office for Civil Rights, culling security incidents from June 1, 2018, to May 31, 2019. A report this summer from Clearwater’s CyberIntelligence Institute says that, of the breaches in the previous 12 months, 90 healthcare breaches affecting more than 9 million individuals, were related to servers in some way.
Cyber risk management is not an “IT problem”; it is an enterprise risk management matter that can be harnessed into […]
The security of medical images took center stage this past week as Senator Mark Warner of Virginia demanded that TridentUSA and its affiliate MobileXUSA outline their cybersecurity practices after ProPublica reported the imaging firms left millions of medical records and patient data exposed online.
On July 25, 2019 the Governor of New York signed into law the “Stop Hacks and Improve Electronic Data Security Act” (SHIELD ACT) effective March 21, 2020.
The digital transformation of healthcare is rapidly driving the adoption of new technology and information systems to support key business initiatives. We are experiencing a veritable explosion in health care data, systems and devices.