Enterprise Efficiency - Andrew Froehlich - A Proactive Approach to Healthcare IT Security

MOBILE HELP REGISTER LOGIN
HOME DELL INFORMATION RESOURCES BLOGGERS MESSAGES ABOUT US WEBINARS RSS
Cloud Mobile Virtualization Storage End-User Productivity Recovery Business Management IT Efficiency Security OEM E2 India
Visit Our E2 Forums \| Education \| Financial Services \| Government \| Healthcare \| Manufacturing \| Retail New! Focus on: End User Computing

	ANDREW FROEHLICH A Proactive Approach to Healthcare IT Security Andrew Froehlich, Network Engineer & IT Consultant \| 2/7/2013 \| 14 comments Tweet Comment \| Print \| RSS Login to Rate The promise of profits to be made in healthcare IT, coupled with new HIPAA regulations, has put a renewed focus on software security. It used to be that software security was an afterthought in the healthcare industry. But HIPAA regulations have helped to bring the security topic to the forefront, and many healthcare IT managers are now placing security on an even plane with functionality. For example, the University of Michigan recently announced that it is offering a new graduate-level course that specifically focuses on medical device security. While this is a positive step in the right direction, it's hard to patch an already broken system. The real challenge occurs in assuring security across the full lifecycle of the software. Although software security may, indeed, be improved when an application is first deployed on a medical center infrastructure, it doesn't remain secure for long. The real reason software security eventually fails is the outdated method for regulating medical software over the long haul. The process to recertify software after adding new security updates is tedious at best. Software companies find that it requires an inordinate amount of time and money to keep software security patches up to current standards. What ends up happening is that software is developed, certified, and deployed, never to be updated again. There's not a great deal of profit involved in maintaining security, so it's often ignored. I've personally seen this occur on numerous occasions -- even with well-respected medical device companies. It's this combination of antiquated regulations and lack of interest by the software companies that creates an environment of lax security practices. Security pressures mount in healthcare IT The responsibility falls on the healthcare provider to properly secure devices and applications. A large number of healthcare systems are deployed by vendors using common desktop and server operating systems such as Microsoft Windows or Linux. Even though these operating systems receive regular security patches from the OS vendor, they cannot be deployed onto medical systems until they are certified and approved by the vendor. This process happens slowly, if at all. Additionally, it's common for healthcare device and application vendors to disallow third-party applications from being installed on these systems. This significantly limits what can be done to secure systems on an OS level, such as third-party anti-virus or software firewalls. If you want to protect your organization from the latest vulnerabilities, the best defense is to physically or logically separate weak systems, providing an added layer of security. Fortunately, there are a couple different methods that can be used to proactively protect insecure health systems. One way around this is to deploy small hardware-based firewalls between these systems and the rest of the network. Many enterprise-class networking companies offer low-cost firewalls that can be deployed in a bridged, or transparent mode. This means that the firewall can be deployed without any reconfiguration or re-addressing being needed. This is especially useful if a medical device regularly moves from one location to another. An alternative to providing hardware point-based solutions for vulnerable health systems is to create separate, secure DMZ areas. By leveraging today's modern, virtualized firewall solutions, it's fairly easy to create multiple, logical DMZs. These effectively quarantine unpatched systems so they can't affect the rest of the network if they become compromised. While this may create a complex infrastructure, it often is necessary in order to quarantine specific systems that don't meet a minimum level of security. A renewed interest in medical device security is a positive step toward safe healthcare software in the future. But securing software for deployment on day one is only part of the challenge. The real issue is continuing security measures throughout the lifecycle of the system. Because of problems within the industry, IT managers must take a proactive approach to securing software themselves. Comment \| Print \| RSS Comments View Comments: Newest First \| Oldest First \| Threaded View [close this box] Page 1 / 2 > >> Syerita Turner A Proactive Approach to Healthcare IT Security 2/21/2013 9:06:05 AM Login to Rate Re: InfoSec the enemy. When it comes to security and healthcare there are some things that can be done to protect information and then some things will fall through the cracks. I think that allowing people in the healthcare industry very little play when it comes to downloading on a healthcare or company computer because this is where your problems begin. Keeping people off of sites that are not for business and providing strict guidelines about plugging up personal devices will have to be set before issuing these machiines out to the masses. User Ranking: Reply \| Post Message \| Messages List \| Start a Board singlemud A Proactive Approach to Healthcare IT Security 2/18/2013 9:47:03 PM Login to Rate Re: IT Security in Health care I really do not think the security concerns will be addressed. It is always the second thing and forgotten easily. Thinking about banking industries, with so many credit card breaches, it still keeps leaking User Ranking: Reply \| Post Message \| Messages List \| Start a Board soozyg A Proactive Approach to Healthcare IT Security 2/13/2013 11:39:34 AM Login to Rate Re: A Proactive Approach to Healthcare IT Security @Sara A great selling point? Yes, actually would I agree that security could be a good selling point. But the statement here is There's not a great deal of profit involved in maintaining security, so it's often ignored. Which seems accurate...BUT if a company is talking about the money-making departments, security is up there with the non-money makers like marketing, publicity and accounting. I would say if we're categorizing like that, sales would be the only direct money making department. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Susan Nunziata A Proactive Approach to Healthcare IT Security 2/12/2013 11:42:01 PM Login to Rate Re: InfoSec the enemy. @Damian: I think that's a fair assessment. There is $$ at stake in penalties and unfortunately that is often what is needed to drive appropriate behavior. I'd like to think ethics come first, but that has not been proven out in much of corporate history. User Ranking: Reply \| Post Message \| Messages List \| Start a Board tekedge A Proactive Approach to Healthcare IT Security 2/12/2013 7:09:50 PM Login to Rate IT Security in Health care It will soon become important to the healthcare industry to invest in IT security to guard the confidentiality of the patient history. But at present the slew of changes in the industry is keeping them fighting to keep the costs down. I am really skeptical when they will actually address the security concerns! User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:47:14 PM Login to Rate Re: A Proactive Approach to Healthcare IT Security @soozyg Over recent years, some IT security professionals have tried to say that good security practices will eventually become a great selling point for a lot of organizations. I'm not sure that it's true, though. If it's true at all, then I think it only applies to the financial services industry. When it comes to healthcare services, people are going to make their choices based upon what healthcare organization they can trust with their body, not which they can trust with their data. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:44:13 PM Login to Rate Re: InfoSec the enemy. @Damian Agreed: "I'm amazed at how little security is considered amongst many IT professionals I meet." On the flip side, I'm often amazed at how little the business is considered by many security professionals I meet. I think that CIOs, CISOs, and CFOs should overcome their differences and become friends. Like the fox and the hound. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:37:42 PM Login to Rate third parties factor in too Thanks for the post Andrew. Another thing that comes to mind when thinking about healthcare device security is that the devices aren't entirely run by the healthcare organization. For example, the EEG equipment used at my hospital is maintained by a third party vendor -- the hospital's IT department apparently has nothing to do with it. User Ranking: Reply \| Post Message \| Messages List \| Start a Board soozyg A Proactive Approach to Healthcare IT Security 2/10/2013 7:43:01 PM Login to Rate Re: A Proactive Approach to Healthcare IT Security There's not a great deal of profit involved in maintaining security, so it's often ignored. Interesting take--so because an area doesn't make any money, health care companies don't talk about it even though patient confidentiality is crucial and avoids lawsuits. User Ranking: Reply \| Post Message \| Messages List \| Start a Board batye A Proactive Approach to Healthcare IT Security 2/8/2013 2:16:29 PM Login to Rate Re: InfoSec the enemy. Susan you are right... as with Healthcare and IT security is more like cat and dog fighting... no one wants to give priority to IT security until breach happens... and everyone started thinking... why? as with out proper balance is bad... User Ranking: Reply \| Post Message \| Messages List \| Start a Board Page 1 / 2 > >> The blogs and comments posted on EnterpriseEfficiency.com do not reflect the views of TechWeb, EnterpriseEfficiency.com, or its sponsors. EnterpriseEfficiency.com, TechWeb, and its sponsors do not assume responsibility for any comments, claims, or opinions made by authors and bloggers. They are no substitute for your own research and should not be relied upon for trading or any other purpose.	More Blogs from Andrew Froehlich Traditional Hardware Refresh Cycles Don't Work Anymore Andrew Froehlich 5/15/2013 5 comments If your organization is still using these rigid hardware refresh cycles, it's likely that you've been struggling to keep up with the latest in tech trends. To put it simply, business ... Financial Markets Are Overly Sensitive to Hacks Andrew Froehlich 5/14/2013 10 comments Over the past few months, there have been a number of high-profile Twitter account hacks. Your DNS Server Is Helping DDoS Attacks Andrew Froehlich 5/1/2013 5 comments In the first quarter of this year, it was reported that the Internet experienced a 700 percent DDoS bandwidth increase. As DDoS attacks force more bandwidth onto a target, it means that ... Public Clouds Aren't as Attractive as They Used to Be Andrew Froehlich 4/29/2013 40 comments At the recent OpenStack Summit, there was a great deal of discussion about enterprise-class companies moving off big-name public clouds including Amazon Web Services (AWS) and RackSpace. ... Giving Malware a Bad Reputation Andrew Froehlich 4/17/2013 19 comments Malware that is unsuspectingly downloaded off websites can be a challenge to detect in the wild. Antivirus and URL blacklisting techniques help, but these methods are not terribly accurate. More from Andrew Froehlich SUSAN NUNZIATA: Putting M2M to Work LEARN MORE ANDRE YEE: What You Need to Succeed With Big-Data LEARN MORE GEORGE COLOMBO: Your Brain on DDoS LEARN MORE DAVID WAGNER: Lessons in Turnaround Leadership LEARN MORE CURTIS FRANKLIN JR.: Predict the Future LEARN MORE For All CIO Content, Click Here Poll See the full archive of polls E2 Radio Latest Archived Broadcast Big Picture CIOs Data visualization can make complex data easier to grasp. Our expert guest will talk about the hows, whys, and whats of bringing the big picture to your enterprise. Listen May 28th 2pm EDT Tuesday CIO Coaching Session: Gerber & Hugos Remind Me May 30th 2pm EDT Thursday Executive Interview: Glenn Evans of Acrux Remind Me Full schedule Archived shows Download to calendar Video Symposium On-demand Video with Chat NBA's Big-Data Slam Dunk: The CIO's Story NBA CIO Michael Gliedman will tell us why the NBA decided to create NBA.com/stats Watch Full schedule Archived shows Download to calendar Webinars IT Convergence Strategies: Why, When and How 6/18/2013 - Please join us for the "IT Convergence Strategies: Why, When and How " to learn more about: • 5 truths about infrastructure convergence today that go beyond the hype • How to exploit the 4 phases of convergence maximum efficiency and agility • Key milestones to plan for on the convergence journey • Why integrated management is a critical component of convergence plans • The importance of an open, modular approach, such as Dell’s active infrastructure, to building a converged data center More information and registration All Upcoming Webinars Archive of Past Webinars E2 IT Migration Zones Office 365 Finds Fans Cutting Through the Modern App Confusion Microsoft Hints at Changes to Windows 8 S’équiper ou non d’un logiciel anti-virus ? Microsoft passe au facteur deux Windows Azure Infrastructure Services est disponible ! Microsofts Surface Pro kommt nach Deutschland Zum Schmunzeln: drei neue Werbeclips für Windows 8 Internet Explorer 10 auf dem Vormarsch Like Us on Facebook Twitter Feed follow us Dell IT Insights Site Moderators Wanted Enterprise Efficiency is looking for engaged readers to moderate the message boards on this site. Engage in high-IQ conversations with IT industry leaders; earn kudos and perks. Interested? E-mail: moderators@enterpriseefficiency.com Whitepapers and Analytics Reports Dell's Efficiency Modeling Tool The major problem facing the CIO is how to measure the effectiveness of the IT department. Learn how Dell’s Efficiency Modeling Tool gives the CIO two clear, powerful numbers: Efficiency Quotient and Impact Quotient. These numbers can be transforma¬tive not only to the department, but to the entire enterprise. Read the full report The State of Enterprise Efficiency in the Virtual Era: Virtualization – Smart Approaches to Maximize Gains Virtualization is a presence in nearly all enterprise data centers. But not all companies are using it to its best effect. Learn the common characteristics of success, what barriers companies face, and how to get the most from your efforts. Read the full report Informed CIO: Dollars & Sense: Virtual Desktop Infrastructure Cut through the VDI hype and get the full picture -- including ROI and the impact on your Data Center -- to make an informed decision about your virtual desktop infrastructure deployments. Read the full report See the full archive of reports here. Dell Information Resources SPONSORED BY DELL BRIEFINGS Gartner: Virtualization Consulting Service Provider Profiles Executive Q&A: Dell CIO Robin Johnson Discusses Becoming An Efficient Enterprise CASE STUDIES Salesforce.com: Building a Scalable Cloud EBOOKS Bringing the Cloud Down to Earth PUBLIC SECTOR RESOURCES Virtualizing Mission-Critical Applications: 5 Storage Imperatives VIDEOS Dell and Trend Micro Desktop Virtualization DDVS Overview Video DDVS Process Methodology Video DDVS Deliver Models Video WHITE PAPERS Don't Let Security Slow Down Your VDI Deployment The State of IT Consumerization: Mobility Trends in SMBs Mobile Refresh: 3 Business Reasons to Leave Desktops Behind How to Manage Mobile Devices Is Your Infrastructure Mobile Ready? SMBs and Consumerization of IT Cloud Computing: Five Trends that will Impact Your IT Planning in 2012 Crossroads in the Cloud: How IT Leaders and Business Stakeholders Make Smarter Decisions on Cloud Computing How to Manage Mobile Devices Is Your Infrastructure Mobile Ready? SMBs and Consumerization of IT eBay Drives Data Center Efficiencies to a Higher Level while Lowering Costs Seeing Green in the Benefits of Cloud: Copenhagen Airports Maximizes Green Efficiency Journey to the Cloud: What IT Enterprises Should Expect Balancing Cost-Cutting Measures with the Need to Grow Fixing the Relationship Between the CIO and the Rest of the C-Suite Backup and Recovery: How to Avoid the Coming Crunch Business Continuity with Cloud Based Data Protection Data Protection Modernization: Technology and Strategy Revealed Easily Manage, Scale and Protect Storage Data While Delivering Optimal Performance Data Protection and Recovery: When And Where You Need It Driving innovation in your IT organization Better Healthcare Starts With Better Information Keeping It Lean and Competitive: Server Virtualization with Hyper-V(TM) R2 The AMD Opteron(TM) 6000 Series Platform: Revolutionizing Server Price/Performance How the Right Infrastructure Delivers Real SQL Database Virtualization Benefits AMD processors put Union Pacific on the fast track Forrester: Market Overview Of Cloud Service Offerings From Global IT Providers Gartner: Planning For The Security Features Of Windows 7 All Resources Cloud Computing: Rip & Replace or System Upgrade? Upcoming Debates \| Debate archive \| Register Final Results 60% Yes 40% No Debate details Listen to the archive Debate wrap-up Continue the discussion On the Case ALL ON THE CASE A Video Case Study – Translational Genomics Research Institute 10 08:12 On the Case TGen IT: Where We're Going Next 12 02:24 On the Case Better Care Through Better Communications... 5 06:58 On the Case TGen IT: Where We Are Now 10 06:45 On the Case TGen IT: Where We Were 12 02:27 On the Case 1,200% Faster 8 02:12 On the Case IT May Improve Children's Chances... 5 1:25 On the Case Medical Advances in the Cloud 3 2:25 On the Case TGen: Living the Mission 8 1:59 On the Case TGen Speeding Up Biomedical Research... 3 2:13 On the Case Computing Power Helping to Save Children's... e2 Video ALL VIDEOS 0 2:42 Ivan Schneider Clash of the Tableau 8: Release the... 2 2:10 Tom Nolle Using Virtualization - for Real! 0 2:12 Tom Nolle Is UC Becoming Oxymoronic or Just... 5 4:45 E2 Editors Windows vs. Integrated Circuit CPU... 14 4:34 E2 Editors Radio vs. Public Internet Access 16 4:34 E2 Editors Mainframes vs. Servers 5 3:07 E2 Editors TCP/IP vs. Printing Press 11 3:12 E2 Editors BYOD vs. E-Commerce 7 4:19 E2 Editors Telecommuting vs. Outsourcing 20 4:28 E2 Editors Personal Computer vs. Mobile Devic... 13 3:09 E2 Editors Smartphones vs. Productivity Softw... 5 2:03 Tom Nolle There's More to Mobility Than the... 9 3:21 Ivan Schneider From Kim Jong-Un's Trackball to Nuance... 1 2:19 Tom Nolle Data/Storage Wish List for Enterpr... 12 3:22 E2 Editors E2 Editors Go Mad! Episode 3



UBM TECH OUR MARKETS: Business Technology \| Channel \| Electronics \| Game & App Development Working With Us: Advertising Contacts \| Event Calendar \| Tech Marketing Solutions \| Corporate Site \| Contact Us / Feedback Terms of Service \| Privacy Statement \| Copyright © 2013 UBM Tech, All rights reserved

MOBILE HELP REGISTER LOGIN
HOME DELL INFORMATION RESOURCES BLOGGERS MESSAGES ABOUT US WEBINARS RSS
Cloud Mobile Virtualization Storage End-User Productivity Recovery Business Management IT Efficiency Security OEM E2 India
Visit Our E2 Forums \| Education \| Financial Services \| Government \| Healthcare \| Manufacturing \| Retail New! Focus on: End User Computing

	ANDREW FROEHLICH A Proactive Approach to Healthcare IT Security Andrew Froehlich, Network Engineer & IT Consultant \| 2/7/2013 \| 14 comments Tweet Comment \| Print \| RSS Login to Rate The promise of profits to be made in healthcare IT, coupled with new HIPAA regulations, has put a renewed focus on software security. It used to be that software security was an afterthought in the healthcare industry. But HIPAA regulations have helped to bring the security topic to the forefront, and many healthcare IT managers are now placing security on an even plane with functionality. For example, the University of Michigan recently announced that it is offering a new graduate-level course that specifically focuses on medical device security. While this is a positive step in the right direction, it's hard to patch an already broken system. The real challenge occurs in assuring security across the full lifecycle of the software. Although software security may, indeed, be improved when an application is first deployed on a medical center infrastructure, it doesn't remain secure for long. The real reason software security eventually fails is the outdated method for regulating medical software over the long haul. The process to recertify software after adding new security updates is tedious at best. Software companies find that it requires an inordinate amount of time and money to keep software security patches up to current standards. What ends up happening is that software is developed, certified, and deployed, never to be updated again. There's not a great deal of profit involved in maintaining security, so it's often ignored. I've personally seen this occur on numerous occasions -- even with well-respected medical device companies. It's this combination of antiquated regulations and lack of interest by the software companies that creates an environment of lax security practices. Security pressures mount in healthcare IT The responsibility falls on the healthcare provider to properly secure devices and applications. A large number of healthcare systems are deployed by vendors using common desktop and server operating systems such as Microsoft Windows or Linux. Even though these operating systems receive regular security patches from the OS vendor, they cannot be deployed onto medical systems until they are certified and approved by the vendor. This process happens slowly, if at all. Additionally, it's common for healthcare device and application vendors to disallow third-party applications from being installed on these systems. This significantly limits what can be done to secure systems on an OS level, such as third-party anti-virus or software firewalls. If you want to protect your organization from the latest vulnerabilities, the best defense is to physically or logically separate weak systems, providing an added layer of security. Fortunately, there are a couple different methods that can be used to proactively protect insecure health systems. One way around this is to deploy small hardware-based firewalls between these systems and the rest of the network. Many enterprise-class networking companies offer low-cost firewalls that can be deployed in a bridged, or transparent mode. This means that the firewall can be deployed without any reconfiguration or re-addressing being needed. This is especially useful if a medical device regularly moves from one location to another. An alternative to providing hardware point-based solutions for vulnerable health systems is to create separate, secure DMZ areas. By leveraging today's modern, virtualized firewall solutions, it's fairly easy to create multiple, logical DMZs. These effectively quarantine unpatched systems so they can't affect the rest of the network if they become compromised. While this may create a complex infrastructure, it often is necessary in order to quarantine specific systems that don't meet a minimum level of security. A renewed interest in medical device security is a positive step toward safe healthcare software in the future. But securing software for deployment on day one is only part of the challenge. The real issue is continuing security measures throughout the lifecycle of the system. Because of problems within the industry, IT managers must take a proactive approach to securing software themselves. Comment \| Print \| RSS Comments View Comments: Newest First \| Oldest First \| Threaded View [close this box] Page 1 / 2 > >> Syerita Turner A Proactive Approach to Healthcare IT Security 2/21/2013 9:06:05 AM Login to Rate Re: InfoSec the enemy. When it comes to security and healthcare there are some things that can be done to protect information and then some things will fall through the cracks. I think that allowing people in the healthcare industry very little play when it comes to downloading on a healthcare or company computer because this is where your problems begin. Keeping people off of sites that are not for business and providing strict guidelines about plugging up personal devices will have to be set before issuing these machiines out to the masses. User Ranking: Reply \| Post Message \| Messages List \| Start a Board singlemud A Proactive Approach to Healthcare IT Security 2/18/2013 9:47:03 PM Login to Rate Re: IT Security in Health care I really do not think the security concerns will be addressed. It is always the second thing and forgotten easily. Thinking about banking industries, with so many credit card breaches, it still keeps leaking User Ranking: Reply \| Post Message \| Messages List \| Start a Board soozyg A Proactive Approach to Healthcare IT Security 2/13/2013 11:39:34 AM Login to Rate Re: A Proactive Approach to Healthcare IT Security @Sara A great selling point? Yes, actually would I agree that security could be a good selling point. But the statement here is There's not a great deal of profit involved in maintaining security, so it's often ignored. Which seems accurate...BUT if a company is talking about the money-making departments, security is up there with the non-money makers like marketing, publicity and accounting. I would say if we're categorizing like that, sales would be the only direct money making department. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Susan Nunziata A Proactive Approach to Healthcare IT Security 2/12/2013 11:42:01 PM Login to Rate Re: InfoSec the enemy. @Damian: I think that's a fair assessment. There is $$ at stake in penalties and unfortunately that is often what is needed to drive appropriate behavior. I'd like to think ethics come first, but that has not been proven out in much of corporate history. User Ranking: Reply \| Post Message \| Messages List \| Start a Board tekedge A Proactive Approach to Healthcare IT Security 2/12/2013 7:09:50 PM Login to Rate IT Security in Health care It will soon become important to the healthcare industry to invest in IT security to guard the confidentiality of the patient history. But at present the slew of changes in the industry is keeping them fighting to keep the costs down. I am really skeptical when they will actually address the security concerns! User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:47:14 PM Login to Rate Re: A Proactive Approach to Healthcare IT Security @soozyg Over recent years, some IT security professionals have tried to say that good security practices will eventually become a great selling point for a lot of organizations. I'm not sure that it's true, though. If it's true at all, then I think it only applies to the financial services industry. When it comes to healthcare services, people are going to make their choices based upon what healthcare organization they can trust with their body, not which they can trust with their data. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:44:13 PM Login to Rate Re: InfoSec the enemy. @Damian Agreed: "I'm amazed at how little security is considered amongst many IT professionals I meet." On the flip side, I'm often amazed at how little the business is considered by many security professionals I meet. I think that CIOs, CISOs, and CFOs should overcome their differences and become friends. Like the fox and the hound. User Ranking: Reply \| Post Message \| Messages List \| Start a Board Sara Peters A Proactive Approach to Healthcare IT Security 2/11/2013 5:37:42 PM Login to Rate third parties factor in too Thanks for the post Andrew. Another thing that comes to mind when thinking about healthcare device security is that the devices aren't entirely run by the healthcare organization. For example, the EEG equipment used at my hospital is maintained by a third party vendor -- the hospital's IT department apparently has nothing to do with it. User Ranking: Reply \| Post Message \| Messages List \| Start a Board soozyg A Proactive Approach to Healthcare IT Security 2/10/2013 7:43:01 PM Login to Rate Re: A Proactive Approach to Healthcare IT Security There's not a great deal of profit involved in maintaining security, so it's often ignored. Interesting take--so because an area doesn't make any money, health care companies don't talk about it even though patient confidentiality is crucial and avoids lawsuits. User Ranking: Reply \| Post Message \| Messages List \| Start a Board batye A Proactive Approach to Healthcare IT Security 2/8/2013 2:16:29 PM Login to Rate Re: InfoSec the enemy. Susan you are right... as with Healthcare and IT security is more like cat and dog fighting... no one wants to give priority to IT security until breach happens... and everyone started thinking... why? as with out proper balance is bad... User Ranking: Reply \| Post Message \| Messages List \| Start a Board Page 1 / 2 > >> The blogs and comments posted on EnterpriseEfficiency.com do not reflect the views of TechWeb, EnterpriseEfficiency.com, or its sponsors. EnterpriseEfficiency.com, TechWeb, and its sponsors do not assume responsibility for any comments, claims, or opinions made by authors and bloggers. They are no substitute for your own research and should not be relied upon for trading or any other purpose.	More Blogs from Andrew Froehlich Traditional Hardware Refresh Cycles Don't Work Anymore Andrew Froehlich 5/15/2013 5 comments If your organization is still using these rigid hardware refresh cycles, it's likely that you've been struggling to keep up with the latest in tech trends. To put it simply, business ... Financial Markets Are Overly Sensitive to Hacks Andrew Froehlich 5/14/2013 10 comments Over the past few months, there have been a number of high-profile Twitter account hacks. Your DNS Server Is Helping DDoS Attacks Andrew Froehlich 5/1/2013 5 comments In the first quarter of this year, it was reported that the Internet experienced a 700 percent DDoS bandwidth increase. As DDoS attacks force more bandwidth onto a target, it means that ... Public Clouds Aren't as Attractive as They Used to Be Andrew Froehlich 4/29/2013 40 comments At the recent OpenStack Summit, there was a great deal of discussion about enterprise-class companies moving off big-name public clouds including Amazon Web Services (AWS) and RackSpace. ... Giving Malware a Bad Reputation Andrew Froehlich 4/17/2013 19 comments Malware that is unsuspectingly downloaded off websites can be a challenge to detect in the wild. Antivirus and URL blacklisting techniques help, but these methods are not terribly accurate. More from Andrew Froehlich SUSAN NUNZIATA: Putting M2M to Work LEARN MORE ANDRE YEE: What You Need to Succeed With Big-Data LEARN MORE GEORGE COLOMBO: Your Brain on DDoS LEARN MORE DAVID WAGNER: Lessons in Turnaround Leadership LEARN MORE CURTIS FRANKLIN JR.: Predict the Future LEARN MORE For All CIO Content, Click Here Poll See the full archive of polls E2 Radio Latest Archived Broadcast Big Picture CIOs Data visualization can make complex data easier to grasp. Our expert guest will talk about the hows, whys, and whats of bringing the big picture to your enterprise. Listen May 28th 2pm EDT Tuesday CIO Coaching Session: Gerber & Hugos Remind Me May 30th 2pm EDT Thursday Executive Interview: Glenn Evans of Acrux Remind Me Full schedule Archived shows Download to calendar Video Symposium On-demand Video with Chat NBA's Big-Data Slam Dunk: The CIO's Story NBA CIO Michael Gliedman will tell us why the NBA decided to create NBA.com/stats Watch Full schedule Archived shows Download to calendar Webinars IT Convergence Strategies: Why, When and How 6/18/2013 - Please join us for the "IT Convergence Strategies: Why, When and How " to learn more about: • 5 truths about infrastructure convergence today that go beyond the hype • How to exploit the 4 phases of convergence maximum efficiency and agility • Key milestones to plan for on the convergence journey • Why integrated management is a critical component of convergence plans • The importance of an open, modular approach, such as Dell’s active infrastructure, to building a converged data center More information and registration All Upcoming Webinars Archive of Past Webinars E2 IT Migration Zones Office 365 Finds Fans Cutting Through the Modern App Confusion Microsoft Hints at Changes to Windows 8 S’équiper ou non d’un logiciel anti-virus ? Microsoft passe au facteur deux Windows Azure Infrastructure Services est disponible ! Microsofts Surface Pro kommt nach Deutschland Zum Schmunzeln: drei neue Werbeclips für Windows 8 Internet Explorer 10 auf dem Vormarsch Like Us on Facebook Twitter Feed follow us Dell IT Insights Site Moderators Wanted Enterprise Efficiency is looking for engaged readers to moderate the message boards on this site. Engage in high-IQ conversations with IT industry leaders; earn kudos and perks. Interested? E-mail: moderators@enterpriseefficiency.com Whitepapers and Analytics Reports Dell's Efficiency Modeling Tool The major problem facing the CIO is how to measure the effectiveness of the IT department. Learn how Dell’s Efficiency Modeling Tool gives the CIO two clear, powerful numbers: Efficiency Quotient and Impact Quotient. These numbers can be transforma¬tive not only to the department, but to the entire enterprise. Read the full report The State of Enterprise Efficiency in the Virtual Era: Virtualization – Smart Approaches to Maximize Gains Virtualization is a presence in nearly all enterprise data centers. But not all companies are using it to its best effect. Learn the common characteristics of success, what barriers companies face, and how to get the most from your efforts. Read the full report Informed CIO: Dollars & Sense: Virtual Desktop Infrastructure Cut through the VDI hype and get the full picture -- including ROI and the impact on your Data Center -- to make an informed decision about your virtual desktop infrastructure deployments. Read the full report See the full archive of reports here. Dell Information Resources SPONSORED BY DELL BRIEFINGS Gartner: Virtualization Consulting Service Provider Profiles Executive Q&A: Dell CIO Robin Johnson Discusses Becoming An Efficient Enterprise CASE STUDIES Salesforce.com: Building a Scalable Cloud EBOOKS Bringing the Cloud Down to Earth PUBLIC SECTOR RESOURCES Virtualizing Mission-Critical Applications: 5 Storage Imperatives VIDEOS Dell and Trend Micro Desktop Virtualization DDVS Overview Video DDVS Process Methodology Video DDVS Deliver Models Video WHITE PAPERS Don't Let Security Slow Down Your VDI Deployment The State of IT Consumerization: Mobility Trends in SMBs Mobile Refresh: 3 Business Reasons to Leave Desktops Behind How to Manage Mobile Devices Is Your Infrastructure Mobile Ready? SMBs and Consumerization of IT Cloud Computing: Five Trends that will Impact Your IT Planning in 2012 Crossroads in the Cloud: How IT Leaders and Business Stakeholders Make Smarter Decisions on Cloud Computing How to Manage Mobile Devices Is Your Infrastructure Mobile Ready? SMBs and Consumerization of IT eBay Drives Data Center Efficiencies to a Higher Level while Lowering Costs Seeing Green in the Benefits of Cloud: Copenhagen Airports Maximizes Green Efficiency Journey to the Cloud: What IT Enterprises Should Expect Balancing Cost-Cutting Measures with the Need to Grow Fixing the Relationship Between the CIO and the Rest of the C-Suite Backup and Recovery: How to Avoid the Coming Crunch Business Continuity with Cloud Based Data Protection Data Protection Modernization: Technology and Strategy Revealed Easily Manage, Scale and Protect Storage Data While Delivering Optimal Performance Data Protection and Recovery: When And Where You Need It Driving innovation in your IT organization Better Healthcare Starts With Better Information Keeping It Lean and Competitive: Server Virtualization with Hyper-V(TM) R2 The AMD Opteron(TM) 6000 Series Platform: Revolutionizing Server Price/Performance How the Right Infrastructure Delivers Real SQL Database Virtualization Benefits AMD processors put Union Pacific on the fast track Forrester: Market Overview Of Cloud Service Offerings From Global IT Providers Gartner: Planning For The Security Features Of Windows 7 All Resources Cloud Computing: Rip & Replace or System Upgrade? Upcoming Debates \| Debate archive \| Register Final Results 60% Yes 40% No Debate details Listen to the archive Debate wrap-up Continue the discussion On the Case ALL ON THE CASE A Video Case Study – Translational Genomics Research Institute 10 08:12 On the Case TGen IT: Where We're Going Next 12 02:24 On the Case Better Care Through Better Communications... 5 06:58 On the Case TGen IT: Where We Are Now 10 06:45 On the Case TGen IT: Where We Were 12 02:27 On the Case 1,200% Faster 8 02:12 On the Case IT May Improve Children's Chances... 5 1:25 On the Case Medical Advances in the Cloud 3 2:25 On the Case TGen: Living the Mission 8 1:59 On the Case TGen Speeding Up Biomedical Research... 3 2:13 On the Case Computing Power Helping to Save Children's... e2 Video ALL VIDEOS 0 2:42 Ivan Schneider Clash of the Tableau 8: Release the... 2 2:10 Tom Nolle Using Virtualization - for Real! 0 2:12 Tom Nolle Is UC Becoming Oxymoronic or Just... 5 4:45 E2 Editors Windows vs. Integrated Circuit CPU... 14 4:34 E2 Editors Radio vs. Public Internet Access 16 4:34 E2 Editors Mainframes vs. Servers 5 3:07 E2 Editors TCP/IP vs. Printing Press 11 3:12 E2 Editors BYOD vs. E-Commerce 7 4:19 E2 Editors Telecommuting vs. Outsourcing 20 4:28 E2 Editors Personal Computer vs. Mobile Devic... 13 3:09 E2 Editors Smartphones vs. Productivity Softw... 5 2:03 Tom Nolle There's More to Mobility Than the... 9 3:21 Ivan Schneider From Kim Jong-Un's Trackball to Nuance... 1 2:19 Tom Nolle Data/Storage Wish List for Enterpr... 12 3:22 E2 Editors E2 Editors Go Mad! Episode 3



UBM TECH OUR MARKETS: Business Technology \| Channel \| Electronics \| Game & App Development Working With Us: Advertising Contacts \| Event Calendar \| Tech Marketing Solutions \| Corporate Site \| Contact Us / Feedback Terms of Service \| Privacy Statement \| Copyright © 2013 UBM Tech, All rights reserved