Healthcare Information Security Podcast
By HealthcareInfoSecurity.com
To listen to an audio podcast, mouse over the title and click Play. Open iTunes to download and subscribe to podcasts.
Podcast Description
Exclusive, insightful audio interviews by our staff with healthcare/security leading practitioners and thought-leaders
| Name | Description | Released | Price | ||
|---|---|---|---|---|---|
|
1 |
2012 Fraud-Fighting Agenda | Fraud threats have changed little in the past decade. But their global scale has, and James Ratley, president of the ACFE, details how fraud examiners must change their approach to fighting these crimes in 2012. | 12/20/11 | Free | View In iTunes |
|
2 |
Risk Awareness: What Do CEOs Need to Know? | If management awareness of information security issues increases, will an organization's commitment to securing practices and policies also increase? This is the question answered by an eye-opening new study. | 12/14/11 | Free | View In iTunes |
|
3 |
Disaster Recovery: Supply Chain at Risk | Every organization likes its business continuity/disaster recovery plan before a disaster, says Al Berman of DRI International. But in the aftermath? Different story - and one that must be addressed in 2012. | 12/14/11 | Free | View In iTunes |
|
4 |
AHIMA CEO Tackles Privacy Challenges | The lack of uniformity in federal and state privacy and security requirements is creating major challenges for health information managers attempting to comply, says Lynne Thomas Gordon, the new CEO of the American Health Information Management Association. | 12/14/11 | Free | View In iTunes |
|
5 |
Privacy Advocate Frustrated By Inertia | Deven McGraw, co-chair of the Privacy and Security Tiger Team that's advising federal healthcare regulators, explains why she's frustrated by delays in rolling out new regulations to protect electronic health records and safeguard the exchange of patient information. | 12/9/11 | Free | View In iTunes |
|
6 |
Breach Notification Planning Tips | Healthcare organizations should carefully document all necessary breach investigation and notification actions and responsibilities to avoid chaos when an incident occurs, says Dawn Morgenstern, privacy official at the Walgreens national drugstore chain. | 12/8/11 | Free | View In iTunes |
|
7 |
Making Web Applications Secure | Vulnerabilities in applications developed for the Commonwealth of Pennsylvania contributed to a major security breach a few years back, one that state CISO Erik Avakian does not want repeated. | 12/7/11 | Free | View In iTunes |
|
8 |
Pace Charters New Cyber Institute | New York's Pace University has just announced its new Seidenberg Cyber Security Institute. What is the school's mission, and why is now the ideal time to open its doors to career-minded students? | 12/7/11 | Free | View In iTunes |
|
9 |
Organizing a Breach Notification Team | It's one thing to have a data breach response team. It's quite another to ensure that team is made up of savvy personnel, says Brian Dean, a former privacy executive for KeyBank. | 12/5/11 | Free | View In iTunes |
|
10 |
For Clinics, Privacy Training Is Key | Physician group practices, many of which are adopting their first electronic health record system, need to make staff training on privacy and security issues a top priority, says Susan Turney, M.D., the new CEO at the Medical Group Management Association. | 12/2/11 | Free | View In iTunes |
|
11 |
Toolkit Helps With Risk Assessments | A new, free HIPAA Security Rule Toolkit is designed to help healthcare organizations conduct a thorough risk assessment, says Kevin Stine, who helped guide the project for the National Institute of Standards and Technology. | 12/2/11 | Free | View In iTunes |
|
12 |
Breach Response: Reputational Risk | Data breaches are all about reputational risk, says attorney Lisa Sotto. And as legal requirements grow, attorneys must play increasingly integral roles in helping clients respond to incidents. | 11/30/11 | Free | View In iTunes |
|
13 |
The State of Security Education | Information security threats - especially to critical infrastructures and from nation-states - are evolving. But security education curricula are struggling to keep pace, according to Eugene Spafford, renowned information security professor at Purdue University. | 11/29/11 | Free | View In iTunes |
|
14 |
HIPAA Rules Delay Creates Challenges | The ongoing delay in the release of final versions of HIPAA modifications and the HIPAA breach notification rule makes it more difficult for healthcare organizations to set information security investment priorities, says hospital privacy officer Kari Myrold. | 11/28/11 | Free | View In iTunes |
|
15 |
IP Protection Bills Threaten Internet | The Brooking Institute's Allan Friedman says bills before Congress aimed at protecting intellectual property threaten cybersecurity. | 11/28/11 | Free | View In iTunes |
|
16 |
Influencing Policy, If Not the Law | Jacob Olcott says Congress' failure to enact comprehensive cybersecurity legislation over the past half decade doesn't mean lawmakers haven't influenced IT security policy. | 11/22/11 | Free | View In iTunes |
|
17 |
Firewalls: The Next Generation | Too many of today's firewalls are out of date and exposing organizations to unacceptable business risks, says Chris King of Palo Alto Networks. | 11/16/11 | Free | View In iTunes |
|
18 |
Identifying Infosec Jobs, Skills, Tasks | NICE's Ernest McDuffie says a proposed cybersecurity workforce framework represents a consensus of government thought on how best to define the jobs, skills and tasks needed to secure information technology. | 11/15/11 | Free | View In iTunes |
|
19 |
BYOD and Corporate Policy | Unfortunately, says Ken Vander Wal, most organizations have done little to address security in their policies and procedures regarding BYOD, which is changing the ways companies address user behavior and risk. | 11/15/11 | Free | View In iTunes |
|
20 |
How Training Helps Prevent Breaches | A lack of ongoing HIPAA compliance training increases the risk of internal breaches, says Terrell Herzig, information security officer at UAB Medicine. | 11/14/11 | Free | View In iTunes |
|
21 |
Making the Business Case for Security | Winning senior executive support for information security spending requires "a solid business case of justifications," says Christopher Paidhrin, security compliance officer at PeaceHealth Southwest Medical Center. | 11/11/11 | Free | View In iTunes |
|
22 |
HIPAA Compliance: A New Attitude | Ramped up HIPAA enforcement is a big reason behind the No. 1 information security priority for the coming year: improving regulatory compliance, says attorney Adam Greene. | 11/10/11 | Free | View In iTunes |
|
23 |
Community Service: How to Give Back | Giving back to the community. It's a civic responsibility, says Dan Waddell of Tantus Technologies. But it's also a necessity to help raise cyber awareness. Waddell explains how security pros can give back. | 11/8/11 | Free | View In iTunes |
|
24 |
Breach Resolution: A Success Strategy | One reason why so many healthcare organizations are not well-prepared to counter security threats is that "key leadership has not bought into the whole process," says Bob Krenek of Experian® Data Breach Resolution. | 11/7/11 | Free | View In iTunes |
|
25 |
Winning Funding for Info Security | Penetration tests that demonstrate how an unauthorized user could gain access to patient information can be effective in winning support for a bigger information security budget, says David Kennedy of Diebold, Incorporated. | 11/7/11 | Free | View In iTunes |
|
26 |
Web Apps: The Top Vulnerabilities | ISACA has just released a new study about the top vulnerabilities of Web applications. And, according to Sarb Sembhi, the results of this survey just might surprise you. | 11/3/11 | Free | View In iTunes |
|
27 |
ACOs Must Safeguard Data Sharing | Accountable Care Organizations that will be formed to coordinate treatment of some Medicare patients must take steps to comply with HIPAA - as well as additional privacy requirements - as they share patient data among participating providers, says security expert Rebecca Herold. | 11/3/11 | Free | View In iTunes |
|
28 |
Cyber Intel Employs Risk Approach | Harry Raduege sees the nascent field of cyber intelligence as a way for governments and businesses to be proactive, and not reactive, to today's sophisticated digital threats. | 11/1/11 | Free | View In iTunes |
|
29 |
ID Theft: How to Help Consumers | ID theft expert Joanna Crane wonders whether banks, government agencies and healthcare providers do enough to assist consumers with ID theft recovery, saying consumer expectations are often loftier than what's being done to meet the demand. | 10/31/11 | Free | View In iTunes |
|
30 |
VA's Plan for Mobile Device Security | Roger Baker, CIO at the Department of Veterans Affairs, outlines the department's mobile device security strategy, providing details on the rollout of iPhones and iPads. | 10/20/11 | Free | View In iTunes |
|
31 |
How Audits Can Increase Infosec Budgets | Mike Brown and Amry Junaideen see audits as great tools to promote heftier IT security budgets, substantiating where dollars should be spent to safeguard an organization's information systems and assets. | 10/18/11 | Free | View In iTunes |
|
32 |
BlackBerry Episode Strikes at IT Security Tenet | Winn Schwartau says the BlackBerry disruption this past week (see BlackBerry Disruptions: Where to Start?) hit at the heart of one of the fundamentals of IT security: availability. | 10/13/11 | Free | View In iTunes |
|
33 |
The App Sec Pro and the Shark | When Mano Paul of (ISC)2 discusses today's top application security challenges, he draws an analogy with sharks. And what he views as the skills needed to tackle today's top threats might surprise you. | 10/13/11 | Free | View In iTunes |
|
34 |
Barriers Stunting Cloud Adoption | Alastair MacWillson says the lack of harmonization among state, national and international security laws and regulations has proved challenging for global organizations that want to work in the cloud. | 10/7/11 | Free | View In iTunes |
|
35 |
Cloud Computing: Compliance Challenges | Too many organizations overlook regulatory compliance issues when working with cloud computing vendors, says security expert Alastair MacWillson. | 10/5/11 | Free | View In iTunes |
|
36 |
Interview: The New HIPAA Enforcer | Leon Rodriguez, the new director of the Department of Health and Human Services' Office for Civil Rights, describes his HIPAA enforcement agenda. | 10/3/11 | Free | View In iTunes |
|
37 |
Business Continuity: What We're Missing | From the earthquake in Japan to Hurricane Irene in the U.S., organizations worldwide have found their business continuity and disaster plans tested. But what lessons must we draw from these incidents? | 10/3/11 | Free | View In iTunes |
|
38 |
7 Steps to Secure Mobile Devices | Elayne Starkey recently gave up her BlackBerry for an iPhone, and uses the Apple mobile device for personal and work doings, securely connecting to the computer system of her employer, the state of Delaware. | 9/29/11 | Free | View In iTunes |
|
39 |
PCI: Merchants Still Fall Short | Discussing Verizon's new report on the state of PCI compliance, PCI expert Jen Mack says payment card security today is "disappointing," and global merchants are at serious risk of new data breaches. | 9/28/11 | Free | View In iTunes |
|
40 |
HIPAA Audit Prep: Five Key Steps | Healthcare organizations need to take five key steps to prepare for the upcoming HIPAA compliance audit program, says compliance specialist Bob Chaput. | 9/23/11 | Free | View In iTunes |
|
41 |
Mobile: Are Security Risks Overblown? | Mobile apps and smartphone security are increasing global concerns. But Dr. Giles Hogben of ENISA says mobile malware mania is a bit overhyped, since mobile is actually more secure than most other platforms currently on the market. | 9/23/11 | Free | View In iTunes |
|
42 |
Dodd-Frank: What to Expect in 2012 | It's been well over a year since the passage of the Dodd-Frank Wall Street Reform and Consumer Protection Act. How should banking institutions prepare for the hundreds of new regulations expected to come as a result of this landmark legislation? | 9/21/11 | Free | View In iTunes |
|
43 |
Connecting HIEs: Is It Feasible? | Ensuring adequate security will prove vital to efforts to link statewide health information exchanges to each other, says IT consultant Patti Dodgen. | 9/16/11 | Free | View In iTunes |
|
44 |
A New Approach to IT Security | Intelligence expert Terry Roberts says cyber intelligence, a new approach to IT security, could make significant gains in the coming year. "The good thing is, this isn't really rocket science," says the chair of the Intelligence and National Security Alliance's Cyber Council. | 9/14/11 | Free | View In iTunes |
|
45 |
Hurricane Irene Offers Lessons | Based on its experience with Hurricane Irene, an executive at Memorial Sloan Kettering Cancer Center in Manhattan advises hospitals to make sure they plan for worst-case scenarios. | 9/12/11 | Free | View In iTunes |
|
46 |
9/11: The Global Perspective | The Sept. 11 terrorist attacks struck the U.S., but the impact and lessons affected the world and the entire information security profession, says Rolf von Roessing, past international vice president of ISACA. | 9/9/11 | Free | View In iTunes |
|
47 |
Security in a Post-9/11 World | Although the 9/11 attacks 10 years ago were a strong catalyst for ramped up disaster recovery and business continuity planning, there's still plenty of work to do, says security specialist Mac McMillan. | 9/9/11 | Free | View In iTunes |
|
48 |
Shifting Course on Infosec Post-9/11 | On the morning of Sept. 11, 2001, federal IT leader Mark Forman was briefing government chief human resources directors on the president's e-government initiative at a forum at the University of Maryland, a 10-mile drive from his White House office, when word came of the first jet crashing into the north tower of the World Trade Center in New York. | 9/8/11 | Free | View In iTunes |
|
49 |
Lessons of Sept. 11 | As we approach the 10-year anniversary of the 9/11 attacks on the U.S., Kevin Sullivan, a former investigator with the New York State Police, reflects on lessons learned and steps industries still need to take to ensure a tragedy like 9/11 is never repeated. | 9/7/11 | Free | View In iTunes |
|
50 |
Social Media: Why Training Is Key | Frequent face-to-face training on social media policies is a vital component of any risk management effort, says consultant Erika Del Giudice. | 9/2/11 | Free | View In iTunes |
|
51 |
The Power of the Next Generation Firewall | Out with the old; in with the new. It's time for security-minded organizations to invest in the power and protection of the next generation firewall, says Matt Keil of Palo Alto Networks. | 8/31/11 | Free | View In iTunes |
|
52 |
Why IT Security Careers Remain Hot | Careers in IT security remain hot, says David Foote, noted researcher and analyst of IT workforce trends. But there's a disconnect between current job opportunities and the talent pool looking to fill them. | 8/30/11 | Free | View In iTunes |
|
53 |
Facial Biometrics Pose Privacy Woes | Facial recognition technology could prove to be an effective way to authenticate individuals seeking entry to secured buildings or databases storing sensitive information. But the biometric technology already is being abused, and IT security managers employing facial recognition should be careful to encrypt the biometric data, cautions a privacy rights leader. | 8/28/11 | Free | View In iTunes |
|
54 |
HIPAA Audits: Documentation Is Key | Having complete documentation of every aspect of your privacy and security strategy is the best way to prepare for a HIPAA audit, says consultant Cliff Baker. | 8/24/11 | Free | View In iTunes |
|
55 |
Cloud Computing: Insurance Issues | Healthcare organizations entering cloud computing contracts should carefully consider whether they need additional liability insurance coverage to address the risks involved, says IT consultant Gerard Nussbaum. | 8/17/11 | Free | View In iTunes |
|
56 |
Questions to Ask Cloud Vendors | Before negotiating a contract with a cloud computing vendor, organizations should ask plenty of questions about privacy and security, says consultant Chris Witt. | 8/15/11 | Free | View In iTunes |
|
57 |
PCI: New Tokenization Guidance Issued | Bob Russo says the long-awaited PCI guidance on tokenization should provide merchants with a baseline for standardization and best practices, and serve as a roadmap for how tokenization can complement compliance with the PCI-DSS. | 8/12/11 | Free | View In iTunes |
|
58 |
New Ideas for Securing the Web | As far as Dr. Giles Hogben of ENISA is concerned, now might be the golden opportunity for information security experts to influence the security and privacy measures that may help define Internet safety for the next decade or beyond. | 8/12/11 | Free | View In iTunes |
|
59 |
Creating Ag Extension Agent for Cyber | Eugene Spafford thinks America needs the cybersecurity equivalent of an agriculture extension service to help educate citizens on IT security. | 8/10/11 | Free | View In iTunes |
|
60 |
Creating a Culture of Security | Yahoo's Justin Somaini believes his fellow CISOs in business and government do a good job keeping their bosses informed of proper information security practices, but could do better in educating the rank and file about them. | 8/8/11 | Free | View In iTunes |
|
61 |
Access Reports: Is Revamp Inevitable? | Federal officials should consider a major revamp of a proposal that would require healthcare organizations to provide patients with a report listing everyone who has electronically accessed their records, a former government official who helped draft the proposal says. | 8/8/11 | Free | View In iTunes |
|
62 |
Securing the Cloud | ISACA's Marc Vael says differences in cloud computing environments and cloud providers can pose security risks. But well thought-out contracts and risk-management plans can fill potential security gaps and ensure business continuity during outages and disasters. | 8/5/11 | Free | View In iTunes |
|
63 |
Inside a Fraud Investigation | No two fraud incidents may be exactly alike, but a fraud investigator's approach can still be very consistent and precise, says Jean-Francois Legault, a fraud investigations specialist with Deloitte and Touche. | 8/3/11 | Free | View In iTunes |
|
64 |
Cloud Computing: Critical Issues | Before entering a contract with a cloud computing company, organizations should consider three critical issues, says Feisal Nanji, executive director at the security consulting firm Techumen. | 8/2/11 | Free | View In iTunes |
|
65 |
The Value of Penetration Testing | Scott Laliberte, managing director of Protiviti, wrote the book on penetration testing, and he has strong feelings about what organizations are doing right and wrong when assessing their information security risks today. | 8/1/11 | Free | View In iTunes |
|
66 |
Critiquing the EHR Access Report Plan | Dan Rode of the American Health Information Management Association describes why the group wants to see major revisions in a proposed federal rule requiring hospitals, clinics and others to give patients access reports listing everyone who's viewed their records. | 7/29/11 | Free | View In iTunes |
|
67 |
The ROI of Trustable Identities | There are significant hard and soft benefits for government agencies to gain by investing now in solutions built around Trustable Identities, says Mike Ozburn, principal of Booz Allen Hamilton. | 7/26/11 | Free | View In iTunes |
|
68 |
Forensics in the Cloud | Performing digital forensics in the cloud isn't necessarily a new discipline, says Rob Lee of SANS Institute. But the task definitely requires a whole new mindset and some new skills from investigators. | 7/26/11 | Free | View In iTunes |
|
69 |
The Ethics of Information Security | It is no longer enough for information security professionals to secure critical information. They also need to be asking about the legitimacy of where this information comes from, says John Colley, managing director of (ISC)2 in EMEA. | 7/25/11 | Free | View In iTunes |
|
70 |
Cybersecurity: The New Frontier | Dickie George of the National Security Agency has one word to describe the state of information security education today: "Spotty." And this state must improve if we hope to fill all the growing demand for security pros. | 7/25/11 | Free | View In iTunes |
|
71 |
Ron Ross on NIST's New Privacy Controls | NIST's Ron Ross points out that its seminal security control guidance, Special Publication 800-53, contains only one privacy control, requiring agencies to conduct a privacy impact assessment. That will change by year's end. | 7/21/11 | Free | View In iTunes |
|
72 |
Elements of a Social Media Policy | You know your organization's social media policy is a good one when it starts sounding less like a checklist and more like common sense, says Sherrie Madia, social media expert and author. | 7/19/11 | Free | View In iTunes |
|
73 |
HIPAA Audits: Preparation Steps | An important component of preparing for a potential HIPAA compliance audit is to complete a "walk through" to make sure privacy and security policies and procedures are practical and effective, former HIPAA enforcer Adam Greene advises. | 7/18/11 | Free | View In iTunes |
|
74 |
McAndrew Explains HIPAA Audits | The long-overdue HIPAA compliance audit program likely will launch late this year or early in 2012 after up to 20 test audits are completed, says Susan McAndrew, deputy director of the federal agency overseeing the program. | 7/15/11 | Free | View In iTunes |
|
75 |
RSA's CSO Tells Why He Took the Job | Eddie Schwartz didn't shy away from the offer to become RSA's first chief security officer after the security firm experienced a sophisticated advanced-persistent-threat breach. Instead, Schwartz embraced the hack as the reason to take the job. (See RSA to Get Its First Chief Security Officer.) | 7/12/11 | Free | View In iTunes |
|
76 |
New Roles in Risk Management | Recent high-profile data breaches and heightened threats add up to one thing: a bright future for information security professionals who want to start or re-start a career in risk management. | 7/11/11 | Free | View In iTunes |
|
77 |
Biometrics Seen as SecurID Alternative | RSA customers who feel victimized by last March's breach of the security vendor's computers have viable options that include continued use of the SecurID authentication tokens, those offered by competitors, or something entirely different: biometrics. | 7/7/11 | Free | View In iTunes |
|
78 |
Job Opportunities in Information Assurance | People with good analytical backgrounds that understand regulatory compliance are in demand. Their counterparts - defenders of IT systems - will always be in demand. "We need the tens of thousands that can manage those defenders and then we need 100,000 that are out there learning the trade, that are passionate about what they do and that are willing to put in the extra hours to keep the citizens of the nation and the state secure," Dan Likarish, assistant professor and program chair of the IT department at CO-based Regis, says. In an exclusive interview about information assurance and why the job market for information assurance professionals has seen astounding growth, Likarish discusses: Opportunities for information assurance professionals; Trends impacting information assurance education; Best options for someone to get into the information assurance profession. | 7/6/11 | Free | View In iTunes |
|
79 |
Fraud Fighters Wanted | Today's top fraud threats recognize no global boundaries, says James Ratley, head of the Association of Certified Fraud Examiners. And they require a stronger global workforce than ever before. | 7/5/11 | Free | View In iTunes |
|
80 |
RSA's Post-Breach Security | Eddie Schwartz, the new - and first - chief security officer of RSA, says the IT security provider hit by a sophisticated advanced-persistent-threat attack in March is focusing internal security on efforts to reduce the time an intruder can go undetected. | 6/30/11 | Free | View In iTunes |
|
81 |
Business Associates: Minimizing Risk | A key factor in minimizing the risk of a breach when working with business associates is to provide these partners with the minimum amount of information they need to perform their services, says security expert Brian Lapidus. | 6/29/11 | Free | View In iTunes |
|
82 |
Privacy by Redesign: A New Concept | Organizations' biggest obstacles to privacy protection are the organizations themselves - specifically, their silos - says Dr. Ann Cavoukian, proponent of the new concept, Privacy by Redesign. | 6/28/11 | Free | View In iTunes |
|
83 |
Executive Decision: What to Encrypt | SafeNet CEO Chris Fedde says top executives, not chief information or chief information security officers, should have final say on what data to encrypt. | 6/27/11 | Free | View In iTunes |
|
84 |
Protecting Medical Devices | A new consortium is leading an effort to devise best practices for ensuring the security of networked medical devices. | 6/25/11 | Free | View In iTunes |
|
85 |
4 R&D Initiatives Focus on Infosec | Northrop Grumman Cybersecurity Research Consortium's Robert Brammer says IT security researchers should think like Wayne Gretzky, the National Hockey League hall of famer: Skate to where the puck will be. | 6/21/11 | Free | View In iTunes |
|
86 |
VA Addresses Medical Device Security | The latest component of the U.S. Department of Veterans Affairs' ongoing effort to protect medical devices from malware is the creation of a centralized patch management system, says Randy Ledsome, the VA's acting director of field security operations. | 6/21/11 | Free | View In iTunes |
|
87 |
Business Associate Management Tips | Working with business associates to prevent health information breaches requires far more than writing detailed contract terms on privacy and security, says regulatory expert Christopher Hourihan. | 6/15/11 | Free | View In iTunes |
|
88 |
PCI Council Addresses Virtualization | The PCI Security Standards Council's new guidance on virtualization in the payments space aims to provide best practices for securing the payments chain's virtual platforms and appliances. | 6/14/11 | Free | View In iTunes |
|
89 |
Patient Identifiers: Their Role in HIEs | The executive director of a Southern California health information exchange describes a pilot project that's testing whether patient identifiers make it easier to match patients to their records from multiple organizations. | 6/10/11 | Free | View In iTunes |
|
90 |
RSA Breach: Token Replacement is 'Smart' | IT security expert Marcus Ranum says RSA's offer to replace its SecurID tokens is a deal worth taking. | 6/8/11 | Free | View In iTunes |
|
91 |
Mobile Devices - Risks & Rewards | What's the top threat on the minds of global IT leaders? Employee-owned mobile devices - or BYOD (bring your own device), as the trend is known. The struggle: Do mobile device benefits outweigh the organizational risks? | 6/3/11 | Free | View In iTunes |
|
92 |
New Index Measures Cyberspace Safety | Quantifying the safety or danger of cyberspace is tough. But a highly respected IT security practitioner and an experienced risk management consultant have teamed to develop an index they contend reflects the relative security of cyberspace by aggregating the views of information security industry professionals. | 6/2/11 | Free | View In iTunes |
|
93 |
Author Describes Disclosures Rule | Adam Greene, the primary author of the proposed accounting of disclosures rule mandated under the HITECH Act, describes its major provisions and offers advice on how to prepare. | 6/1/11 | Free | View In iTunes |
|
94 |
Public Health Serves as Cybersec Model | The same approach governments and businesses employ to protect individuals from the dangers of secondhand smoke could be applied to safeguard cyberspace, says Scott Charney, Microsoft's vice president of trustworthy computing, engineering excellence and environmental sustainability. | 5/31/11 | Free | View In iTunes |
|
95 |
Why We Need Ethical Hacking | "Ethical hacking" - is the term an oxymoron, or is it one of today's necessities in the fight against cybercrime? Jay Bavisi, president and co-founder of the EC Council, feels strongly about why we need ethical hackers more today than ever before. | 5/26/11 | Free | View In iTunes |
|
96 |
Pressure is on Privacy Pros | From Epsilon to Sony, recent data breaches and legislative trends tell a dramatic story about the turbulent state of privacy worldwide, according to J. Trevor Hughes, head of the International Association of Privacy Professionals. | 5/25/11 | Free | View In iTunes |
|
97 |
Privacy: "Mobile Technology Concerns Me" | Kirk Herath, Chief Privacy Officer at Nationwide Insurance Companies, has been in privacy management for more than a decade, and he has two main concerns about today's enterprise: Mobile technology and cloud computing. | 5/23/11 | Free | View In iTunes |
|
98 |
Privacy: "You Can't Prepare Enough" | The recent data breaches at Epsilon and Sony should send a chilling message to privacy officers everywhere. "You can't prepare enough," says Kirk Herath, chief privacy officer of Nationwide Insurance Companies. | 5/22/11 | Free | View In iTunes |
|
99 |
Chicago HIE's Approach to Security | A new Chicago health information exchange will use a cloud computing architecture with security provisions, says Terri Jacobsen, who's directing the project. | 5/20/11 | Free | View In iTunes |
|
100 |
Business Continuity: Breaking the Silos | One of the unexpected impacts of the global economic crisis is that many organizations have lost their business resiliency, says Lyndon Bird, director of The Business Continuity Institute, headquartered in the U.K. | 5/20/11 | Free | View In iTunes |
|
101 |
U.S. Initiates Cybersecurity Diplomacy | Chris Painter knows that the United States must determine what are the standard behavioral practices on the Internet before achieving substantial international agreements on cybersecurity. | 5/19/11 | Free | View In iTunes |
|
102 |
New Threats, New Data Security Strategies | The threat landscape has evolved dramatically over the past several years, and now it's time for healthcare security leaders to step up and meet the new challenges involved with securing critical data. | 5/17/11 | Free | View In iTunes |
|
103 |
How to Refine Privacy, Security Training | Alexander Eremia, chief privacy officer at MedStar Health, says role-based staff training on privacy and security issues is essential. | 5/17/11 | Free | View In iTunes |
|
104 |
Breach Notification: Be Prepared | Regulatory compliance expert Harry Rhodes says it's essential to have a formal process in place for objectively assessing whether a security incident needs to be reported as a breach. | 5/16/11 | Free | View In iTunes |
|
105 |
Health Information Exchange Success Strategies | Timathie Leslie and Kristine Martin Anderson of Booz Allen Hamilton share insights on how to ensure the success of health information exchanges. | 5/15/11 | Free | View In iTunes |
|
106 |
Congressman Sees Obama Plan as a Start | Rep. James Langevin sees some shortcomings in the president's cybersecurity initiatives unveiled Thursday. | 5/13/11 | Free | View In iTunes |
|
107 |
Disaster Recovery: Cross-Training Key | A key factor in ensuring that information technology is available in the wake of a disaster is cross-training IT staff to handle multiple roles, says Terrell Herzig, information security officer at UAB Medicine. | 5/11/11 | Free | View In iTunes |
|
108 |
Cloud Computing for Image Transfers | Cloud computing helps ease the exchange of diagnostic images while maintaining adequate security, says Amy Radonich of University of California San Diego Health System. | 5/10/11 | Free | View In iTunes |
|
109 |
Social Media: Minimizing Risks | All employers need to overcome the common misperception that "you can say anything you want on social media and not have any consequences," says compliance specialist Roy Snell. | 5/9/11 | Free | View In iTunes |
|
110 |
Public Jitters Over IT Security on Rise | The Unisys Security Index shows growing public anxiety about Internet security. Unisys CISO Patricia Titus wonders how restless the public would be if the poll was conducted after revelations of breaches at RSA, Epsilon and Sony. | 5/6/11 | Free | View In iTunes |
|
111 |
Limited Government: Path to NSTIC | Big brother isn't the relation the government sees itself portraying in developing the National Strategy for Trusted Identities in Cyberspace. Uncle Sam has a more avuncular role in mind, giving advice and serving as a role model. | 5/4/11 | Free | View In iTunes |
|
112 |
The Case for Cloud Security Standards | "On a global basis, countries are recognizing that they need a uniform commercial code, if you will, for data - a unified approach for managing IT infrastructure services," says Marlin Pohlman of the Cloud Security Alliance. | 5/2/11 | Free | View In iTunes |
|
113 |
Why CISOs Must Care About Sony Breach | Intel CISO Malcolm Harkins says the Sony PlayStation breach reminds CISOs in all sectors that such incidents can't be avoided, but their risks can be managed. | 5/2/11 | Free | View In iTunes |
|
114 |
Personalized Medicine and Privacy | A CIO involved in an ambitious personalized medicine project that uses genetic information describes how privacy issues are addressed. | 5/1/11 | Free | View In iTunes |
|
115 |
HealthcareInfoSecurity Editor's Choice for April 2011 | Editor's Choice: Mostashari Addresses Privacy, Security; 10.8 Million Affected by Major Breaches; Time for a Social Media Policy is Now | 4/28/11 | Free | View In iTunes |
|
116 |
Breach Notification Planning Tips | "Breach notification planning is just a fundamental, basic part of risk management in the new millennium," says security expert Bob Chaput. | 4/28/11 | Free | View In iTunes |
|
117 |
Mostashari Addresses Privacy, Security | "We need to ensure and maintain the public's trust in health information systems and the exchange of their health information," says Farzad Mostashari, the new national coordinator for health information technology. | 4/27/11 | Free | View In iTunes |
|
118 |
Security Testing Comes of Age | Four years ago, the Council of Registered Ethical Security Testers began as an organization to bring standardization to the penetration testing industry. Today, CREST's scope is expanding across industries and global regions, says president Ian Glover. | 4/27/11 | Free | View In iTunes |
|
119 |
Physical Security: Timely Tips | Security expert Andrew Weidenhamer offers insights on physical security measures that can help prevent breaches. | 4/24/11 | Free | View In iTunes |
|
120 |
Hidden Files on iPhone Pose Risk | IT security and privacy lawyer David Navetta says revelations that mobile devices such as the iPhone, iPad and Android maintain hidden files tracking users locations could pose a threat to organizations, regardless of whether the devices are owned by individual employees, the company or government agency for which they work. | 4/23/11 | Free | View In iTunes |
|
121 |
HealthcareInfoSecurity Week in Review for Friday, April 22, 2011 | This week's top news and views: Maine Bill Would Require HIE Opt-in; What's Next for the Tiger Team?; Digital IDs Ease Clinical Trial. | 4/22/11 | Free | View In iTunes |
|
122 |
Governance: It's All About Risk | From mobile devices to social media and cloud computing, IT governance is all about risk management. "You can't de-risk everything, but you can de-risk the majority of circumstances you will see in normal operations," says governance expert Robert Stroud. | 4/21/11 | Free | View In iTunes |
|
123 |
What's Next for Tiger Team? | Deven McGraw, co-chair of the Privacy and Security Tiger Team, discusses its most recent recommendations and her views on encryption and asks for suggestions on additional topics to address. | 4/19/11 | Free | View In iTunes |
|
124 |
Data Breaches: Inside the 2011 Verizon Report | The latest Verizon Data Breach Investigations Report is out, and the good news is: The number of compromised records is down. The troubling news is: The number of breaches is up. Bryan Sartin, one of the report authors, explains why. | 4/18/11 | Free | View In iTunes |
|
125 |
HealthcareInfoSecurity Week in Review for Friday, April 15, 2011 | This week's top news and views: Privacy, Security Proposals Advance; Mostashari: Leading the Way at ONC; HIE Pioneers to Securely Share Data. | 4/14/11 | Free | View In iTunes |
|
126 |
Danger Seen In Slashing Infosec Spend | As Congress and the White House look for ways to cut the federal budget, one area that could prove dicey is IT security, contends Department of Homeland Security's Philip Reitinger. | 4/14/11 | Free | View In iTunes |
|
127 |
HIE Pioneers to Securely Share Data | A consortium of five leading healthcare organizations hopes to demonstrate the secure national exchange of health information, says James Walker, M.D. of Geisinger Health System. | 4/13/11 | Free | View In iTunes |
|
128 |
Phishing Season: How to Avoid Fraud | ID security expert Tim Rohrbaugh on phishing trends in light of Epsilon breach. | 4/12/11 | Free | View In iTunes |
|
129 |
HealthcareInfoSecurity Week in Review for Friday, April 8, 2011 | This week's top news and views: Health Net Breach Tops Federal List; Beefing Up Health IT Strategic Plan; Open Source HIE Initiative Described. | 4/7/11 | Free | View In iTunes |
|
130 |
Reitinger's Quest: Build a Safer Internet | Philip Reitinger, the top cybersecurity official in the Department of Homeland Security, is on a mission to help create a new, secure computing ecosystem on the Internet. | 4/6/11 | Free | View In iTunes |
|
131 |
Open Source HIE Initiative Described | David Riley, president of the new Alembic Foundation, explains how the organization is promoting the use of open source software based on the Nationwide Health Information Network standards. | 4/6/11 | Free | View In iTunes |
|
132 |
Epsilon Breach: Time to 'Come Clean' | When it comes to e-marketing and the reliance on third parties such as Epsilon, Nicolas Christin of Carnegie Mellon University says banks and merchants should "come clean" about the information they share with outside entities. | 4/5/11 | Free | View In iTunes |
|
133 |
Epsilon Breach: Risks and Lessons | Privacy Attorney Lisa Sotto says the Epsilon e-mail breach is a warning about the state of data security employed by some third-party service providers. Strong contracts related to security practices must be the norm, not the exception. | 4/4/11 | Free | View In iTunes |
|
134 |
HealthcareInfoSecurity Editor's Choice: Health Net Breach Investigated | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in March, including the Health Net breach investigations. | 3/31/11 | Free | View In iTunes |
|
135 |
Senate Vote Seen on IT Security Bill | A comprehensive bill to dramatically change the way the federal government addresses cybersecurity could pass the Senate as early as this summer, Sen. Thomas Carper, who chairs a Senate panel with IT security oversight, says in an interview with GovInfoSecurity.com. | 3/29/11 | Free | View In iTunes |
|
136 |
PCI DSS Compliance Tips | Too many healthcare organizations have overlooked their obligation to comply with the Payment Card Industry Data Security Standard, says security expert Tom Walsh. | 3/29/11 | Free | View In iTunes |
|
137 |
HealthcareInfoSecurity Week in Review for Friday, March 25, 2011 | This week's top news and views: RSA Clients Manage Risks; Health Breach Tally Hits 8.3 Million Affected; Identity Theft Prevention Strategies. | 3/25/11 | Free | View In iTunes |
|
138 |
CISO: Building Risk Management Support | Chief information security officers must gain buy-in from every business unit for a risk management framework, says Jim Murphy of Caritas Christi Health Care System. | 3/22/11 | Free | View In iTunes |
|
139 |
RSA Breach: Customer's Perspective | Marcus Ranum isn't just a well-regarded information security expert. He's also a customer of the RSA SecurID product, and he's got some strong feelings about the RSA breach and how the industry has responded to it. | 3/22/11 | Free | View In iTunes |
|
140 |
Identity Theft Prevention Strategies | Healthcare organizations should provide their staffs with training on how to guard against identity theft regardless of whether they must comply with the federal Red Flags Rule, says fraud prevention expert Jeremy Miller. | 3/21/11 | Free | View In iTunes |
|
141 |
Inside New PCI Guidance | King says new guidance tackles data collected via call centers and other telephone communications. | 3/21/11 | Free | View In iTunes |
|
142 |
Special Report: The RSA Breach and its Impact | The announcement by RSA that it had been a victim of an advanced persistent threat shook the global information security industry. Stephen Northcutt of SANS Institute and David Navetta of the Information Law Group offer insight on what happened, what it means and how to respond. | 3/18/11 | Free | View In iTunes |
|
143 |
RSA Breach: 'Not a Game-Changer' | It's serious news that RSA's SecurID solution has been the target of an advanced persistent threat. But "It's not a game-changer," says Stephen Northcutt, CEO of SANS Institute. "Anybody who says it is [a game-changer] is an alarmist." | 3/18/11 | Free | View In iTunes |
|
144 |
Lessons From Japan's Disaster | ChicagoFIRST's Brian Tishuk says local lessons can be learned from Japan, especially within the financial, government and healthcare sectors. | 3/18/11 | Free | View In iTunes |
|
145 |
Legal View of RSA Breach | "Persistent" is the operative word about the advanced persistent threat that has struck RSA and its SecurID products. "If the bad guys out there want to get to someone ... they can," says David Navetta of the Information Law Group. | 3/18/11 | Free | View In iTunes |
|
146 |
HealthcareInfoSecurity.com Week in Review for Friday, March 18, 2011 | This week's top news and views: Health Net Breach Investigated; Insights From HIPAA Summit; OCR's McAndrew on Enforcing HIPAA. | 3/17/11 | Free | View In iTunes |
|
147 |
ISMG Week in Review for Fri., March 18, 2011 | A roundup of this week's top news: Hackers target RSA's SecurID products. Also, Japan's nuclear crisis: What do you need to know? Plus: New Health Net breach may be biggest ever. | 3/17/11 | Free | View In iTunes |
|
148 |
5 Tips for Securing SmartPhones | Smartphones are ubiquitous in organizations today. But how secure are these devices -- and what are the security and liability vulnerabilities associated with their use? | 3/17/11 | Free | View In iTunes |
|
149 |
Japan's Crisis: What You Need to Know | Disaster recovery expert Regina Phelps says Japan's nuclear emergency puts local citizens at risk, but organizations globally can learn from the crisis. "I hope that all of us look at this and ask, 'What can I do to be better prepared?'" | 3/16/11 | Free | View In iTunes |
|
150 |
Dr. HIPAA: Security Funding Essential | Adequate funding for privacy and security measures is essential to the success of sharing electronic health records to improve the quality of care, says William Braithwaite, M.D., Ph.D. | 3/15/11 | Free | View In iTunes |
|
151 |
Preparing For HIPAA Audits | Privacy and security specialist Phyllis Patrick offers practical tips on preparing for the upcoming federal HIPAA compliance audits. | 3/14/11 | Free | View In iTunes |
|
152 |
OCR's McAndrew on Enforcing HIPAA | Susan McAndrew of the HHS Office for Civil Rights discusses recent high-profile HIPAA cases, upcoming state attorneys general training and the pending HIPAA audit program. | 3/13/11 | Free | View In iTunes |
|
153 |
Patient Control of EHR Access | Joy Pritts of the Office of the National Coordinator for Health IT says the office intends to develop standards that would give patients the ability to exclude clinicians from accessing certain portions of their electronic health records. | 3/11/11 | Free | View In iTunes |
|
154 |
Japan Disaster: Business Continuity | In the initial wake of Japan's devastating earthquake and subsequent tsunami, business continuity plans have been tested, and organizations now are dealing with severe aftershocks and a growing national crisis, says Alan Berman, executive director of DRI International. | 3/11/11 | Free | View In iTunes |
|
155 |
DNS: The Most Overlooked Aspect of Healthcare Security | Domain Name Security - it's one of the most neglected aspects of information security, but critical to healthcare organizations. | 3/10/11 | Free | View In iTunes |
|
156 |
HealthcareInfoSecurity.com Week in Review for Friday, March 11, 2011 | This week's top news and views: State AGs to Get HIPAA Lawsuit Training; Eight Breach Prevention Tips; Evolving Uses for Smart Cards. | 3/10/11 | Free | View In iTunes |
|
157 |
The 3 Pillars of Trust | The Internet is inherently insecure, and the only way to ensure today's evolving information systems is to build them upon three pillars of trust. | 3/8/11 | Free | View In iTunes |
|
158 |
Evolving Uses for Smart Cards | Russ Jones of Albert Einstein Healthcare Network describes why the delivery system shifted from magnetic stripe cards to smart cards for a variety of applications. | 3/8/11 | Free | View In iTunes |
|
159 |
Breach Notification and National Security | Today's technology is not adequately used, says attorney Lucy Thomson. | 3/8/11 | Free | View In iTunes |
|
160 |
HealthcareInfoSecurity.com Week in Review for Friday, March 4, 2011 | This week's top news and views: Overlooked Breach Prevention Steps; HIPAA Enforcement Picks Up; EHRs and Cloud Computing. | 3/3/11 | Free | View In iTunes |
|
161 |
EHRs and Cloud Computing | Physicians implementing electronic health records should consider cloud computing as a way to improve security, says healthcare IT consultant Patricia Dodgen. | 2/28/11 | Free | View In iTunes |
|
162 |
Assessing HIEs on Privacy Issues | Enforcing standards for privacy and security is a major part of a new health information exchange accreditation program, says Lee Barrett, executive director of the Electronic Healthcare Network Accreditation Commission. | 2/28/11 | Free | View In iTunes |
|
163 |
Overlooked Breach Prevention Steps | Terrell Herzig, information security officer at UAB Medicine, pinpoints frequently overlooked breach prevention steps. | 2/27/11 | Free | View In iTunes |
|
164 |
HealthcareInfoSecurity.com Month in Review for Feb. 2011 | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in February. | 2/25/11 | Free | View In iTunes |
|
165 |
ONC's Fridsma on Security for HIEs | Doug Fridsma, M.D., of the HHS Office of the National Coordinator for Health IT, compares and contrasts the security approaches of two national health information exchange projects. | 2/24/11 | Free | View In iTunes |
|
166 |
NIST Scientists on Firewalls Circa 2011 | Functionality hasn't changed much in two decades, but capabilities have expanded immensely. | 2/22/11 | Free | View In iTunes |
|
167 |
Mayo Clinic's Insights on Social Media | Lee Aase of Mayo Clinic describes the organization's social media guidelines and offers insights on protecting privacy and security. | 2/22/11 | Free | View In iTunes |
|
168 |
Tiger Team's Deven McGraw on Next Steps | Deven McGraw, co-chair of the Privacy and Security Tiger Team that's advising federal regulators, offers insights on how the team's recommendations might be implemented and what topics it will tackle next. | 2/20/11 | Free | View In iTunes |
|
169 |
HealthcareInfoSecurity.com Week in Review for Friday, Feb. 18, 2011 | This week's top news and views: New York Breach Affects 1.7 Million; Privacy Protections for Backup Files; Shifting to Hardware-Based Encryption. | 2/17/11 | Free | View In iTunes |
|
170 |
Cybersecurity: Firewalls Are Easy to Pierce | The 451 Group's Joshua Corman says merely complying with stagnant standards won't ensure security. | 2/15/11 | Free | View In iTunes |
|
171 |
Shifting to Hardware-Based Encryption | Hussein Syed, director of IT security at Saint Barnabas Healthcare System, explains why the organization shifted from software-based to hardware-based encryption. | 2/13/11 | Free | View In iTunes |
|
172 |
HealthcareInfoSecurity.com Week in Review for Friday, Feb. 11, 2011 | This week's top news and views: Assessing the Privacy and Security Tasks for Blumenthal's Successor at ONC; Sizing Up Consumers' Security Concerns. | 2/10/11 | Free | View In iTunes |
|
173 |
Five HIPAA Compliance Tips | Security expert Raj Chaudhary offers five tips for keeping health information private. | 2/10/11 | Free | View In iTunes |
|
174 |
Sizing Up Consumer Security Concerns | A new consumer survey shows that Americans are more concerned about the security of their financial information and personal identifiers than they are about the security of their medical records. | 2/8/11 | Free | View In iTunes |
|
175 |
ID Fraud Costs on the Rise | Javelin's Van Dyke says the cost of managing ID fraud is growing exponentially. | 2/8/11 | Free | View In iTunes |
|
176 |
Lauding the President on Cybersecurity | The Commission on Cybersecurity for the 44th Presidency co-chair praises the president's commitment, but says much more work needs to be done to develop a strategy to combat cyber threats. | 2/8/11 | Free | View In iTunes |
|
177 |
"Allow by Default, Deny by Exception" | Dennis Devlin of Brandeis University knows the difference between training and education. | 2/6/11 | Free | View In iTunes |
|
178 |
HealthcareInfoSecurity.com Week in Review for Friday, Feb. 4, 2011 | This week's top news and views: ONC's Blumenthal to Step Down; Reflections on Health Info Security; 73-Hospital System Sets Security Goals. | 2/3/11 | Free | View In iTunes |
|
179 |
Breach Disclosure: New Laws, Higher Standard | Wells Fargo's Alexander says breach disclosure laws are getting tougher. | 2/3/11 | Free | View In iTunes |
|
180 |
73-Hospital System Sets Security Goals | Sheryl Rose, the first chief information security officer at Catholic Health Initiatives, is leading efforts to implement a comprehensive security strategy as the organization rolls out electronic health records. | 1/31/11 | Free | View In iTunes |
|
181 |
The ROI of Security Compliance | Tripwire's Shenoy says security compliance improves the bottom-line. | 1/30/11 | Free | View In iTunes |
|
182 |
HealthcareInfoSecurity.com Editor's Choice: Jan. 2011 | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in January 2011. | 1/27/11 | Free | View In iTunes |
|
183 |
Selecting a Data Loss Prevention App | Security specialist Rebecca Herold says data loss prevention software can play a critical role in preventing information breaches. | 1/26/11 | Free | View In iTunes |
|
184 |
Beware of Social Media for Screening | Employment Screen Resources' Lester Rosen says there's no hotter trend in background screening than social media. But just as social networks can be used to screen applicants, they also can be abused. | 1/24/11 | Free | View In iTunes |
|
185 |
HealthcareInfoSecurity.com Week in Review for Friday, Jan. 21, 2011 | This week's top news and views: Accenture to Study EHR Interoperability; Clinics Have a Long Way to Go on Security; HITECH As a Security Reminder. | 1/20/11 | Free | View In iTunes |
|
186 |
Cyber Terrorism: How to Fight Back | Cyber terrorism can happen to you, and probably will, says G.F. Bryant Jr. of the World Institute for Security Enhancement. | 1/20/11 | Free | View In iTunes |
|
187 |
The 'Human Side' of EHR Security | Implementing electronic health records software that includes security components is just the first of many steps involved in ensuring security, says Bonnie Cassidy, president of the American Health Information Management Association. | 1/20/11 | Free | View In iTunes |
|
188 |
HITECH: Security Reminder for Clinics | Clinics applying for HITECH Act electronic health records incentive payments are getting a reminder about the importance of information security, says Robert Tennant of the Medical Group Management Association | 1/19/11 | Free | View In iTunes |
|
189 |
National Breach Warning System Urged | When a database breach occurs, consumer notification continues to be a public problem, and it's time for the federal government to step in, says Linda Foley, co-founder of the non-profit Identity Theft Resource Center. | 1/16/11 | Free | View In iTunes |
|
190 |
Cryptography in the Cloud | Ralph Spencer Poore: There's no better way to secure critical data than through cryptography, especially when that data is stored in the cloud. | 1/14/11 | Free | View In iTunes |
|
191 |
HealthcareInfoSecurity.com Week in Review for Friday, Jan. 14, 2011 | This week's top news: An in-depth analysis of a presidential council's report that calls for a universal exchange language for electronic health records. | 1/13/11 | Free | View In iTunes |
|
192 |
Cloud Computing: Finding the Right Solution | The cost savings can be significant, but cloud computing also promises to help healthcare organizations manage risks and achieve business continuity goals. | 1/12/11 | Free | View In iTunes |
|
193 |
PCI Compliance: Improvements Needed | Most industries say PCI is improving payment card security, but driving consumer and employee awareness about vulnerabilities remains a challenge. | 1/12/11 | Free | View In iTunes |
|
194 |
Critiquing EHR Interoperability Plan | A recently released presidential council report, while raising important issues, oversimplifies the challenges involved in securely exchanging health information, says Joyce Sensmeier, vice president for informatics at the Healthcare Information and Management Systems Society. | 1/10/11 | Free | View In iTunes |
|
195 |
Top Security & Privacy Topics of 2011 | When it comes to sizing up the privacy agenda for 2011, the tone at the top of organizations is all about improving data security, says privacy expert and lawyer Lisa Sotto. | 1/10/11 | Free | View In iTunes |
|
196 |
HealthcareInfoSecurity.com Week in Review for Friday, Jan. 7, 2011 | This week's top news and views: Permanent EHR Certification Plan Unveiled; HIPAA Enforcement: When?; A New Authentication Strategy. | 1/6/11 | Free | View In iTunes |
|
197 |
The Social Media Challenge | To Brian Lapidus, COO of Kroll's Fraud Solutions group, the main threat to data security can be summed up in two words: social networking. | 1/6/11 | Free | View In iTunes |
|
198 |
A New Authentication Strategy | Geisinger Health System is changing its approach to user authentication for its various portals, says Dave Young, IT director of web services. | 1/4/11 | Free | View In iTunes |
|
199 |
R&D Focuses on Finding Data in Cloud | Researchers explore adapting geolocation technology to identify where data reside on the cloud so organizations can comply with IT security laws and regulations, RSA Chief Technology Officer Bret Hartman says. | 1/3/11 | Free | View In iTunes |
|
200 |
Futurist Questions HITECH's Viability | Healthcare futurist Jeff Bauer explains why he believes the federal electronic health record incentive program has a slim chance of success. | 12/30/10 | Free | View In iTunes |
|
201 |
Editor's Choice: 2011 Health Info Security Forecasts | An audio review of 2011 forecasts posted on HealthcareInfoSecurity.com in December. | 12/29/10 | Free | View In iTunes |
|
202 |
Cloud Computing: A Good Fit? | More storage capacity, less cost - this is the promise of cloud computing for healthcare organizations. | 12/29/10 | Free | View In iTunes |
|
203 |
HIPAA Enforcement: A 2011 Priority? | Attorney Kathy Roe of The Health Law Consultancy sizes up the healthcare information privacy and security regulatory outlook for 2011. | 12/28/10 | Free | View In iTunes |
|
204 |
8 IT Security Threats for 2011 | Dmitri Alperovitch, McAfee Labs threat research vice president, discusses the company's annual threat predictions, saying: "We are seeing an escalating threat landscape in 2011." | 12/27/10 | Free | View In iTunes |
|
205 |
The Age of 'Involuntary Transparency' | "The environment that started by supporting whistleblowers ... is essentially morphing into 'Gee, we as an organization need to be completely transparent, whether we want to or not,'" says Cal Slemp, managing director of Protiviti. | 12/27/10 | Free | View In iTunes |
|
206 |
4 Components of the Insider Threat | Thwarting the insider threat entails more than knowing an individual with access to a computer, but to recognize the synergy between the individual, organization, technology and environment, I3P Research Director Shari Lawrence Pfleeger says. | 12/22/10 | Free | View In iTunes |
|
207 |
Global Security Challenges for 2011 | 2011 will be the year of more -- more sophisticated malware, more WikiLeaks-style breaches and more regulatory compliance headaches. | 12/22/10 | Free | View In iTunes |
|
208 |
Firestorm of Privacy Activity | "Literally, in my entire time working in the privacy field, I've never seen such profound and aggressive activity by the government in the privacy space," privacy expert Thomas Oscherwitz says. | 12/20/10 | Free | View In iTunes |
|
209 |
Security Spending Up at Rural Hospital | Ron Kloewer, CIO at 25-bed Montgomery County Memorial Hospital, explains why the critical access facility's spending on information security will grow in 2011. | 12/19/10 | Free | View In iTunes |
|
210 |
HealthcareInfoSecurity.com Week in Review for Friday, Dec. 17, 2010 | This week's top news and views: Revised NHIN Governance Plan Advances; Sizing Up the Role of XML in EHRs; Top Healthcare Security Trends for 2011. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 12/16/10 | Free | View In iTunes |
|
211 |
Social Media Policies a 2011 Priority | Devising strategies for ensuring social media are not used in ways that violate patient privacy is one of the top trends for 2011, says Lisa Gallagher, senior director of privacy and security at the Healthcare Information and Management Systems Society. | 12/16/10 | Free | View In iTunes |
|
212 |
Breach Prevention: Bulletproofing Healthcare Network Security | With a hodgepodge of networks, applications and operating systems to manage - maintaining security and preventing breaches can be difficult. The challenges are daunting, but solutions are at hand. This is the perspective of Roark Pollock of HP Tippingpoint. In an interview, Pollock discusses three specific challenges: Regulatory compliance; Patch management; Virtualized environments. | 12/14/10 | Free | View In iTunes |
|
213 |
Secure Messaging, Remote Access Vital | Expanding use of secure messaging as well as remote access to information systems are key 2011 IT priorities for Shriners Hospitals for Children, says Bill Bria, M.D., chief medical information officer. | 12/14/10 | Free | View In iTunes |
|
214 |
Managing Risk: Why It's a Hot Topic | NIST's Ron Ross Tackles the Risk Management Framework | 12/14/10 | Free | View In iTunes |
|
215 |
Marcus Ranum on 2011 Security Outlook | If Marcus Ranum were your CISO, this would be his 2011 resolution: To launch a "War Games" style exercise. | 12/14/10 | Free | View In iTunes |
|
216 |
WikiLeaks Backlash: 'We Are Going to Take You Down' | Hemu Nigam says WikiLeaks founder Julian Assange has become akin to a "cyber messiah" And Assange's followers have proven: "If you turn your back on our messiah, we are going to take you down." | 12/10/10 | Free | View In iTunes |
|
217 |
HealthcareInfoSecurity.com Week in Review for Friday, Dec. 10, 2010 | This week's top news and views: Tests of 'NHIN Light' Standards Begin; PHRs and Privacy: Tackling Tough Issues; HITRUST Framework Updated. | 12/9/10 | Free | View In iTunes |
|
218 |
Top Healthcare Security Trends for 2011 | Dixie Baker, a well-known healthcare information security expert who's advising federal regulators on policy issues, offers her predictions for the top trends for 2011. | 12/9/10 | Free | View In iTunes |
|
219 |
HITRUST Framework Update Described | The Healthcare Information Trust Alliance has unveiled an updated version of its Common Security Framework. | 12/6/10 | Free | View In iTunes |
|
220 |
Internal Audit: The 2011 Agenda | No one knows risk better than the internal auditor, and so no individual has a better opportunity to add risk management value to organizations, says Richard Chambers, president of the Institute of Internal Auditors. | 12/6/10 | Free | View In iTunes |
|
221 |
Lessons Not Learned from WikiLeaks | "Until they personally suffer pain, they don't think it is something that can happen to them," says Eric Cole, an insider threat expert and SANS Institute faculty fellow. | 12/6/10 | Free | View In iTunes |
|
222 |
Who Will Rule Cyberspace in 2020? | Will the U.S. be a leader or a follower in cyberspace in the year 2020? | 12/4/10 | Free | View In iTunes |
|
223 |
HealthcareInfoSecurity.com Week in Review for Friday, Dec. 3, 2010 | This week's top news and views: Senate Passes Red Flags Exemptions; Health Info Security: Much to be Done; Verizon's Authentication Plans. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 12/2/10 | Free | View In iTunes |
|
224 |
A CIO Calls for Security Vigilance | Community hospitals must become more vigilant about information security, especially as they apply for federal electronic health records incentive payments, says Chuck Christian, CIO at Good Samaritan Hospital in Vincennes, Ind. | 12/2/10 | Free | View In iTunes |
|
225 |
WikiLeaks: "It's a Major Wake-up Call" | The recent WikiLeaks release of thousands of sensitive government documents puts security leaders on notice: The breach threat is real, and no organization is immune. | 11/30/10 | Free | View In iTunes |
|
226 |
Verizon Outlines Authentication Plans | As it expands its presence in healthcare, Verizon has set the ambitious goal of issuing free digital credentials to 2.3 million clinicians, says Steven Archer, who heads the innovation incubator group at Verizon Business. | 11/29/10 | Free | View In iTunes |
|
227 |
2011 Outlook: 'Complexity is the Biggest Problem' | The complexity of global compliance may be the biggest task IT security organizations face of 2011, IBM's Kristin Lovejoy says. | 11/29/10 | Free | View In iTunes |
|
228 |
Security Skills: Demand Has Never Been Greater | The information security profession is seeing a transition, as organizations focus more on filling roles related to business and information risk management. | 11/26/10 | Free | View In iTunes |
|
229 |
Editor's Choice: Authentication for Health Data Exchange; Governing HIEs a Tough Task | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in November | 11/23/10 | Free | View In iTunes |
|
230 |
GRC Agenda for 2011 | SAP's Norman Marks: Governance, risk, compliance can improve business. | 11/23/10 | Free | View In iTunes |
|
231 |
HealthcareInfoSecurity.com Week in Review for Friday, Nov. 19, 2010 | This week's top news and views: AvMed Sued Over Laptop Breach; National Claims Database Debated; Uniform Privacy Code Vital for HIEs. | 11/18/10 | Free | View In iTunes |
|
232 |
How to Build a Culture of Privacy | Staff training, aggressive breach prevention efforts and strong sanctions for violating policies are key to creating a corporate culture that values privacy and security, says Alan Dowling, the new CEO of the American Health Information Management Association. | 11/18/10 | Free | View In iTunes |
|
233 |
Uniform Privacy Code Vital for HIEs | A national model for state laws on patient privacy issues would play a key role in the success of health information exchanges, says Richard Gibson, M.D., who recently testified before Congress | 11/15/10 | Free | View In iTunes |
|
234 |
HealthcareInfoSecurity.com Week in Review for Friday, Nov. 12, 2010 | This week's top news and views: Health Net Fined Again for Breach; Assessing Whether Congress Will Alter HITECH Plans; Palm Scans as a Fraud Preventer. | 11/11/10 | Free | View In iTunes |
|
235 |
Patient Palm Scans as a Fraud Preventer | Using palm scanning technology to identify patients can help improve patient safety and prevent fraud, says Michael Sauk, vice president and CIO at University of Wisconsin Hospitals and Clinics. | 11/11/10 | Free | View In iTunes |
|
236 |
Information Assurance Education 2011 | Could schools, businesses and government finally be coming together? | 11/10/10 | Free | View In iTunes |
|
237 |
Case Study: A Health Record Bank Pilot | The health record bank model offers a good method for patients to control who can access their records, says Jesus Hernandez, who's leading an effort to test the model. | 11/8/10 | Free | View In iTunes |
|
238 |
Addressing Public Wi-Fi Security Risks | Healthcare organizations offering free Wi-Fi service to patients and guests need to take multiple security steps, says security expert Christopher Paidhrin | 11/7/10 | Free | View In iTunes |
|
239 |
Incident Response Career Trends | Information security incidents are more sophisticated - and so are the criminals who perpetrate them. This raises the bar for professionals seeking careers in incident response in 2011. | 11/5/10 | Free | View In iTunes |
|
240 |
HealthcareInfoSecurity.com Week in Review for Friday, Nov. 5, 2010 | This week's top news and views: AG Sues WellPoint Over Breach; Surescripts' Role in HIEs; Time to Revisit HIPAA Compliance. | 11/4/10 | Free | View In iTunes |
|
241 |
Incident Response Trends for 2011 | Georgia Killcrece: It's how you manage a security incident that counts. | 11/3/10 | Free | View In iTunes |
|
242 |
HealthcareInfoSecurity.com Week in Review for Friday, Oct. 29, 2010 | This week's top news and views: EHR Security: Lessons From a Pioneer; Grading Obama on Privacy; Strategic Tips on Wireless Security. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 10/28/10 | Free | View In iTunes |
|
243 |
Editor's Choice: Top News and Views for October | Here's an audio compilation of some of the more interesting news HealthcareInfoSecurity.com reported in October: | 10/28/10 | Free | View In iTunes |
|
244 |
Attorney: Revisit HIPAA Compliance | The proposed HIPAA modification rule is a wake-up call for compliance, attorney Kirk Nahra says. | 10/28/10 | Free | View In iTunes |
|
245 |
ISACA on Risk, Compliance Trends | As risk management and regulatory compliance take on greater import within organizations, so do the principles of good project management. | 10/27/10 | Free | View In iTunes |
|
246 |
Strategic Tips on Wireless Security | Choosing the right wireless devices is a vital component of a security strategy, says security adviser Kate Borten. | 10/26/10 | Free | View In iTunes |
|
247 |
ID Theft: Mass. Man Shares Story | The first in a series of new interviews with the real victims of identity theft. Hear their stories, their struggles and their lessons learned. | 10/25/10 | Free | View In iTunes |
|
248 |
Organ Donor Network Uses Authentication | The Nevada Donor Network is using authentication technology to help verify the identities of organ donors, says Ken Richardson, executive director. | 10/21/10 | Free | View In iTunes |
|
249 |
HealthcareInfoSecurity.com Week in Review for Friday, Oct. 22, 2010 | This week's top news and views: Fraud Law Compliance Training Lacking; Medicaid Breach Affects 280,000; Wireless Security: A HITECH Guide. | 10/21/10 | Free | View In iTunes |
|
250 |
Risk Management: Articulating the Value | It's one thing to have solid enterprise risk management practices, but quite another to articulate their value to the greater organization. | 10/20/10 | Free | View In iTunes |
|
251 |
What's Wrong with Application Security? | The level of application security threats is rising, but the level of response is not. "That's a serious disconnect," says Jeff Williams, chair of the OWASP Foundation. | 10/19/10 | Free | View In iTunes |
|
252 |
EHR Adopters Need 'Culture of Privacy' | Physician group practices installing their first electronic health records systems need to "create a culture that values privacy and security," EHR expert Margret Amatayakul says. | 10/18/10 | Free | View In iTunes |
|
253 |
HealthcareInfoSecurity.com Week in Review for Friday, Oct. 15, 2010 | This week's top news and views: Massive Health Insurance Fraud Alleged; FTC: No Major PHR Breaches So Far; Claims Database Raises Privacy Concerns. | 10/14/10 | Free | View In iTunes |
|
254 |
Wireless Security: A HITECH Guide | As healthcare organizations make broader use of wireless networks and devices, they must develop an aggressive risk management plan to address security threats, says security expert Rebecca Herold. | 10/14/10 | Free | View In iTunes |
|
255 |
Creating EHR Privacy, Security Strategies | Hospitals and clinics need to take a methodical approach to privacy and security as they prepare to qualify for electronic health records incentive payments from Medicare and Medicaid under the HITECH Act, security adviser Phyllis Patrick says. | 10/14/10 | Free | View In iTunes |
|
256 |
Infosec Evolution Mimics Immune System | "Signatures are not going to be the way of the future because we don't have time to put a name or a pattern on enemy behaviors and pass it out and block it," says Phyllis Schneck, McAfee chief technology officer/public sector. | 10/12/10 | Free | View In iTunes |
|
257 |
Business Continuity: Getting it Right | When it comes to business continuity and disaster recovery planning, it isn't the cause of the disaster that's the concern - it's the potentially devastating effects. | 10/8/10 | Free | View In iTunes |
|
258 |
HealthcareInfoSecurity.com Week in Review for Friday, Oct. 8, 2010 | This week's top news and views: Building Public Trust in Secure EHRs; Encryption's Role in Risk Management. And don't miss our audio week-in-review podcast by Editorial Director Tom Field. | 10/8/10 | Free | View In iTunes |
|
259 |
Encryption's Role in Risk Management | Healthcare organizations need to develop a better understanding of how encryption fits as one of many components in a broad security strategy, says Mac McMillan, CEO at CynergisTek. | 10/7/10 | Free | View In iTunes |
|
260 |
Physical, Logical Security Convergence | Ron Lander explains why convergence remains such a challenge. | 10/6/10 | Free | View In iTunes |
|
261 |
Zeus: The Global Cyber Threat | Anti-Phishing Working Group's Dave Jevans says arrests for Zeus-related schemes prove the cybercrime fight requires global cooperation. | 10/1/10 | Free | View In iTunes |
|
262 |
Editor's Choice: Hiring of CISO Signals New Era; Breach List: Good News, Bad News | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in September. | 9/30/10 | Free | View In iTunes |
|
263 |
Assessing Security Incidents | Healthcare organizations need to improve the methods they use to objectively assess the severity of a security incident and whether it should be reported, says David Parks, a privacy officer and attorney. | 9/30/10 | Free | View In iTunes |
|
264 |
Managing Business Associates | When it comes to managing relationships with business associates to help with HITECH Act compliance, healthcare organizations could learn some lessons from the banking industry. | 9/28/10 | Free | View In iTunes |
|
265 |
What About Stuxnet? | Kevin Johnson, SANS instructor and security expert, on what you need to know about Stuxnet, Twitter worms and other new threats to organizations and privacy. | 9/26/10 | Free | View In iTunes |
|
266 |
Using Biometrics Without Single Sign-On | Although biometric technology often is sold in tandem with single sign-on systems, the pairing isn't always a good fit, says one security officer. | 9/26/10 | Free | View In iTunes |
|
267 |
HealthcareInfoSecurity.com Week in Review for Friday, Sept. 24, 2010 | This week's top news and views: Federal Anti-Fraud Rule Unveiled; Breach Tally Hits 166 Incidents; Lessons on EHR Privacy from Europe. | 9/23/10 | Free | View In iTunes |
|
268 |
Surviving Social Media | Organizations today approach social media one of three ways: They embrace it, ignore it or are immobilized by it. The key to success is to manage the transition. | 9/22/10 | Free | View In iTunes |
|
269 |
Lessons on EHR Privacy from Europe | The United States should look to the European Union for examples of how to successfully protect the privacy of patient information, the co-author of a new report on electronic health records says. | 9/22/10 | Free | View In iTunes |
|
270 |
Overcoming Fear of the Cloud | For most organizations, the biggest barrier to cloud computing is fear - "Will my data be secure?" It's time to tackle that fear head-on, says Jeff Reich, director of the Institute of Cybersecurity at the University of Texas, San Antonio. | 9/21/10 | Free | View In iTunes |
|
271 |
Authentication at a Small Hospital | Pairing a single sign-on system with authentication technologies enables hospitals to provide easier access to electronic health records while ensuring only appropriate clinicians view patient information, the IT director of a rural Iowa hospital says. | 9/20/10 | Free | View In iTunes |
|
272 |
HITECH Compliance at Rural Hospitals | Small, rural hospitals that lack the resources to conduct a thorough risk assessment should seek out grants to fund hiring outside experts to complete the task, one hospital CEO advises. | 9/16/10 | Free | View In iTunes |
|
273 |
HealthcareInfoSecurity.com Week in Review for Friday, Sept. 17, 2010 | This week's top news and views: Dispute Arises Over Breach Notification; Legal Issues in Cloud Computing; Clarity Needed in Breach Notification Rule. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 9/16/10 | Free | View In iTunes |
|
274 |
Legal Issues in Cloud Computing | Organizations considering using the cloud computing model should carefully consider a long list of legal issues before taking the plunge, an attorney advises. | 9/15/10 | Free | View In iTunes |
|
275 |
"It'll Go on Your Permanent Record" | How does one maintain privacy in the cyberworld, where every transgression is embarrassingly public? | 9/12/10 | Free | View In iTunes |
|
276 |
HealthcareInfoSecurity.com Week in Review for Friday, Sept. 10, 2010 | This week's top news and views: Governing Health Data Exchange; Improving Patients' Access to Records; Patient Consent: A Closer Look. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 9/9/10 | Free | View In iTunes |
|
277 |
How the 'Blue Button' Works | The Markle Foundation's "blue-button" concept for enabling patients to download their records from a secure website is suitable for a wide variety of healthcare organizations, says Josh Lemieux, the foundation's director of personal health technology. | 9/8/10 | Free | View In iTunes |
|
278 |
Patient Consent: A Closer Look | Detailed patient consent recommendations that a privacy and security "tiger team" recently completed are just a starting point toward giving patients far more control over their healthcare information, the co-chair of the team acknowledges. | 9/6/10 | Free | View In iTunes |
|
279 |
HealthcareInfoSecurity.com Week in Review for Friday, Sept. 3, 2010 | This week's top news and views: EHR Certifiers Named; Risk Management and Social Media; Spending on Security Up. And don't miss our audio week-in-review podcast by Howard Anderson, managing editor. | 9/2/10 | Free | View In iTunes |
|
280 |
Consumer Advocate: Patient Consent Vital | Deborah Peel, M.D., founder of Patient Privacy Rights, on protecting the privacy of healthcare information | 9/2/10 | Free | View In iTunes |
|
281 |
Month in Review: Focus on Security Issues Involved in Social Media, Cloud Computing | An audio review of some of the most compelling content posted on HealthcareInfoSecurity.com in August. | 9/2/10 | Free | View In iTunes |
|
282 |
Risk Management and Social Media | Interview with Jonathan Teich, M.D., assistant professor of medicine at Harvard, on social media and security. | 8/31/10 | Free | View In iTunes |
|
283 |
HealthcareInfoSecurity Week in Review: Aug. 28, 2010 | This week's top news and view | 8/27/10 | Free | View In iTunes |
|
284 |
A Breach Prevention Checklist | Interview with Christopher Hourihan, manager, development and programs, Health Information Trust Alliance | 8/26/10 | Free | View In iTunes |
|
285 |
IBM Names Top Trends, Risks | Tom Cross of IBM on the X-Force 2010 Mid-Year Trend and Risk Report. | 8/25/10 | Free | View In iTunes |
|
286 |
EHR Meaningful Use: Security and Privacy | Interview with Kelly McLendon, president of Health Information Xperts. | 8/24/10 | Free | View In iTunes |
|
287 |
HealthcareInfoSecurity.com Week in Review: Aug. 20, 2010 | This week's top news and views from HealthcareInfoSecurity.com, including the latest on electronic health records. | 8/20/10 | Free | View In iTunes |
|
288 |
Breach Prevention, Notification Insights | Interview with Kathryn Roe of The Health Law Consultancy | 8/18/10 | Free | View In iTunes |
|
289 |
Cracking Down on ID Theft | Kim Peretti of PricewaterhouseCoopers on how U.S. courts are applying tougher sentences to cybercrimes. | 8/17/10 | Free | View In iTunes |
|
290 |
The Fundamentals of Risk Management | Debbie Christofferson of the Information Systems Security Association on risk management trends, career opportunities. | 8/13/10 | Free | View In iTunes |
|
291 |
HealthcareInfoSecurity Week in Review: Aug. 13, 2010 | This week's top news and views from HealthcareInfoSecurity.com. | 8/13/10 | Free | View In iTunes |
|
292 |
HITECH Compliance: 5 Critical Security Issues | Brian Lapidus of Kroll on what healthcare organizations need to do to comply with the security provisions of the HITECH Act. | 8/11/10 | Free | View In iTunes |
|
293 |
PCI Update: 'No Surprises' | Interview with Bob Russo, GM of the PCI Security Standards Council, on the Pending Release of the 2010 PCI DSS Update. | 8/9/10 | Free | View In iTunes |
|
294 |
HealthcareInfoSecurity Week in Review: Aug. 6, 2010 | This week's top news and views. | 8/6/10 | Free | View In iTunes |
|
295 |
Cloud Computing: Key Security Factors | Interview with Robert Wah, M.D., of CSC on security issues involved when using remotely hosted applications. | 8/6/10 | Free | View In iTunes |
|
296 |
Assessing EHR Vendors on Security | Interview with Elise Ames of HIS Professionals on questions to ask about electronic health records. | 8/6/10 | Free | View In iTunes |
|
297 |
Cloud Computing: The Case for Certification | Jim Reavis of the Cloud Security Alliance on leaders, fast-followers and the business value of the cloud computing certification. | 8/5/10 | Free | View In iTunes |
|
298 |
Case Study: Securing Mobile Devices | Interview with Fred Cruz of American Hospice about virtual private network project. | 8/4/10 | Free | View In iTunes |
|
299 |
Healthcare Security Strategies: Balancing Compliance and Risk | Interview with Dean Ocampo, Solutions Strategy Director, SafeNet Inc. | 7/30/10 | Free | View In iTunes |
| Total: 299 Episodes |
Customer Reviews
Exceptional podcast!
Very informative content and just the right duration. This is one of the best podcasts for a corporate legal or compliance professional.
Great content
This is a great podcast for people working in the health field. Unfortunately, it appears to be dead after December 20.
Listeners also subscribed to
- Healthcare IT News
- Healthcare IT News
- View In iTunes
- ARRA Today
- NextGen Healthcare Information Systems
- View In iTunes
- Security Insider - Podcast Edition
- Townsend Security
- View In iTunes
