Healthcare organizations need to provide more meaningful education on key information security issues, says Daniel Berger, CEO at Redspin.
The Healthcare Information Security Today survey shows that ramping up training is the No. 1 step organizations plan to take this year to help prevent health data breaches....
A House panel establishes a bipartisan supply chain working group to explore the federal government's role in helping industry assure that IT and telecommunications wares they buy abroad are safe from exploits.
Congress is highly unlikely to enact new laws to require industry to adhere to cybersecurity regulations. But that hasn't stopped a fierce debate among lawmakers and security experts on the value of such rules.
NIST's Ron Ross sees the cloud as helping to reduce the complexity of keeping data secure. But security expert Eugene Spafford of Purdue University offers a different viewpoint in the first part of a two-part joint interview.
A $400,000 federal penalty stemming from the investigation of a breach at a clinic owned by Idaho State University is the latest example of how even relatively small security incidents can trigger hefty sanctions.
The Medical Device Innovation, Safety and Security Consortium is refining a tool that cost-adjusts medical devices based on their security attributes. Learn more about the consortium's various initiatives.
A leader at health advocacy group Genetic Alliance explains the privacy and security measures of a new registry that's designed to enable patients to control how health data is shared with researchers.
As CIOs are asked to assemble more data to demonstrate their organization is providing high-quality care at a lower cost, their role in ensuring privacy and security is evolving, says technology specialist Harry Greenspun, M.D.
Encryption is an important breach prevention tool. But to make the right decisions about how to apply encryption, healthcare organizations should take four specific steps, says security expert Feisal Nanji.
Ronald Sanders says it isn't easy to answer the question of whether the information security field should be professionalized. The former human capital officer at the Office of the Director of National Intelligence explains why.