Sponsored by: Rapid7
Risk-based, enterprise-wide information security programs are becoming more critical for providers as cybersecurity threats continue to evolve and grow more sophisticated. Prevention, mitigation, and detection are crucial, but what happens in the event of a data security incident or a real healthcare data breach? How should entities prepare for the worst case scenario?
Erring on the side of caution has led organizations to embrace the increasingly popular opinion, “not a matter of if, but when,” and prepare for the eventuality of a breach. HIPAA-covered entities can have the right technologies in place (e.g., firewalls, antivirus detection) and do their due diligence in conducting regular employee training sessions to recognize potential threats. But do they have the necessary processes and procedures in place for what happens after a cybersecurity attack?
Healthcare organizations need to complement their preventative efforts with incident detection and response capability, while ensuring they remain HIPAA compliant in the process. In this webcast, listeners will learn best practices with building the right incident detection and response program. Attendees will hear about the following:
- The current threat landscape: how breaches are happening, who is attacking, what information is being sought after?
- Role of risk assessments in the response process
- The difference between detection and response – why healthcare organizations need both
- Review laws and regulations (i.e., HIPAA, HITECH), and other requirements or frameworks (i.e., NIST, ISO 27001)
- Importance of collaboration and information in building cybersecurity measures
Please enter your email address to access this resource