Access Management , Governance & Risk Management , Identity & Access Management

A CISO Describes Why 'Identity' Is Central Aspect of Security

Joey Johnson of Premise Health Outlines a 3-Pillar Security Program Anna Delaney (annamadeline) • August 24, 2021    
Joey Johnson, CISO, Premise Health

Joey Johnson, CISO of Premise Health, a Brentwood, Tennessee-based provider of online healthcare services, outlines a three-pillar security program in which "identity is the central aspect."

See Also: LIVE Webinar | Stop, Drop (a Table) & Roll: An SQL Highlight Discussion

Johnson describes the first pillar as "understanding the data, where it is and how it behaves."

The second pillar involves who has access to that data. "Whether you're talking about customer identities, patient identities, provider identities or those of your workforce, you're dealing with the same dynamic of understanding what the asset is and how to bring some kind of continuity to it and ensure that you're provisioning access in ways that make sense," he says.

"Then the third pillar for us really is about automation and orchestration. … You need to leverage automation mechanisms to help provide visibility coverage."

In a video interview with Information Security Media Group, Johnson discusses:

  • Identity management challenges in the healthcare sector;
  • His three-pillar security program;
  • How "identity" drives business initiatives.

Johnson has been serving as CISO at Premise Health for 10 years. Premise delivers healthcare to large enterprises.

Previous
CISA: Patching ProxyShell Flaws in Exchange Servers Is Urgent
Next
Mozi Botnet Targeting Netgear, Huawei, ZTE Gateways

About the Author

Anna Delaney

Anna Delaney

Director, ISMG Productions

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.



Around the Network

How 2U Inc. Is Fortifying Its Systems and Solutions Designs
How 2U Inc. Is Fortifying Its Systems and Solutions Designs
Protecting the Hidden Layer in Neural Networks
Protecting the Hidden Layer in Neural Networks
Whistleblowing Brings Visibility to the Role of CISOs
Whistleblowing Brings Visibility to the Role of CISOs
Showing Evidence of 'Recognized Security Practices'
Showing Evidence of 'Recognized Security Practices'
The Persisting Risks Posed by Legacy Medical Devices
The Persisting Risks Posed by Legacy Medical Devices
David Derigiotis on the Complex World of Cyber Insurance
David Derigiotis on the Complex World of Cyber Insurance
Aité-Novarica's Cybersecurity Impact Award
Aité-Novarica's Cybersecurity Impact Award
Craig Box of ARMO on Kubernetes and Complexity
Craig Box of ARMO on Kubernetes and Complexity
Organization-Wide Passwordless Orchestration
Organization-Wide Passwordless Orchestration
Are We Doomed? Not If We Focus on Cyber Resilience
Are We Doomed? Not If We Focus on Cyber Resilience

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.