Raising Red Team Thinking in Healthcare

By Dr. Nick van Terheyden aka Dr. Nick
Twitter: @drnic1
Host of Dr. Nick: The Incrementalist#TheIncrementalist

On this episode I talked to Neil Clauson, Regional CISO, at Mimecast, a company focusing on stopping “bad things from happening to good organizations by enabling them to work protected”.

Episode NOW on Demand

We talk about the unique challenges that healthcare faces in securing its attack surface and the ongoing problem of balancing what is possible with what is practical. The bad actors follow the money, like everyone else and there is a lot of money in healthcare and a rich field of information and opportunity for attack. For cybercriminals, patient records, medical data, and the systems that store and process them have high value, which makes healthcare providers and their affiliated businesses an attractive target.

Neil has some great analogies and approaches to security that start with the good, better, and best and elegantly link the concepts to the approach we took to battling COVID as we discovered the threat, learned about that threat, and then applied layers of protection to prevent the disease from spreading and treating instances of breakouts.

We talk about attack surface area and how to reduce this as much as possible by understanding threat actor tactics, techniques, and procedures, and then leveraging the resources internal and external that raise security to the board level focus and the importance of approaching security with a methodical data-driven approach and assessing risk.

how quickly can I get to what I call the mean time to conviction where I can quantify risk, that risk is real and there’s something to be done about it or the mean time to innocence, which is yup we are within our risk appetite, this is something that I don’t need to take further action on

Listen in to hear our discussion on raising the red team thinking in your facility, some of the online tools and data available to assess your status, especially in the context of the increasingly important Cyber Insurance that includes the importance of “Cyber Hygiene”.

About the Show
For years Dr. Nick van Terheyden aka Dr. Nick, has served as a voice on the impact of new technologies on healthcare, earning a reputation as a leading authority on where the future of medicine is going. Combining powers of observation and real world experience, Dr. Nick has seen many predictions come true and makes the case that innovations in healthcare can be accomplished incrementally, not just by moonshot events. Tune in to hear Dr. Nick: The Incrementalist and his guests discuss what the future of healthcare looks like, how we will get there, and what it will take to improve healthcare for all.

This article was originally published on the Dr. Nick – The Incrementalist blog and is republished here with permission.