The Clear Perspective

It's Cybersecurity Awareness Month! In healthcare, safeguarding cybersecurity is safeguarding patients. Whether it's a hospital, health system, physician group, or a trusted digital health partner, when healthcare is attacked, patients are at risk. 
 
Join us all month as we feature some of healthcare's fiercest defenders. They're leaders from across the ecosystem fighting to protect data, systems, and care delivery. Join us to hear how they started, why they chose healthcare, and their advice for other leaders in their spaces. 
 
Cybersecurity is patient safety, do your part, be a healthcare defender. 

It's Cybersecurity Awareness Month! In healthcare, safeguarding cybersecurity is safeguarding patients. Whether it's a hospital, health system, physician group, or a trusted digital health partner, when healthcare is attacked, patients are at risk. 
 
Join us all month as we feature some of healthcare's fiercest defenders. They're leaders from across the ecosystem fighting to protect data, systems, and care delivery. Join us to hear how they started, why they chose healthcare, and their advice for other leaders in their spaces. 
 
Cybersecurity is patient safety, do your part, be a healthcare defender. 

It's Cybersecurity Awareness Month! In healthcare, safeguarding cybersecurity is safeguarding patients. Whether it's a hospital, health system, physician group, or a trusted digital health partner, when healthcare is attacked, patients are at risk. 
 
Join us all month as we feature some of healthcare's fiercest defenders. They're leaders from across the ecosystem fighting to protect data, systems, and care delivery. Join us to hear how they started, why they chose healthcare, and their advice for other leaders in their spaces. 
 
Cybersecurity is patient safety, do your part, be a healthcare defender. 

The Open Worldwide Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. Every year they publish the top 10 API Security Issues and trends and they recently came out with the 2023 update. This episode discusses the changes in ranking and what this might signal, and then looks at how this can affect those who are advancing healthcare innovation across software, applications, and SaaS-based services and platforms.
 
Subscribe to The Clear Perspective, or like/comment on an episode via Clearwatersecurity.com,  Apple Podcasts, Spotify, or your preferred podcast platform.

In this episode of The Risk Perspective, we speak with Andrew Mahler, former OCR Investigator and CynergisTek's VP of Privacy and Compliance about the recently issued OCR guidance on patient privacy in the wake of The Supreme Court decision on Roe. Listen for a debrief of the OCR's guidance that addresses:
How federal law and regulations protect individuals’ PHI and provides clarification on disclosure laws
 Information about what's protected, and what's not when using health information apps on smartphones.
Episode Resources: 
The guidance on the HIPAA Privacy Rule and Disclosures of Information Relating to Reproductive Health Care 
The guidance on Protecting the Privacy and Security of Your Health Information When Using Your Personal Cell Phone or Tablet
Information on filing a complaint if you believe that a HIPAA-covered entity or its business associate violated your health information privacy rights or committed another violation of the Privacy, Security, or Breach Notification Rules
Subscribe to CTEK Voices: The Risk Perspective on Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. Remember to like and subscribe to The Risk Perspective, and don't forget to leave your comments for feedback and topic suggestions!

In this episode, we have a candid conversation with Dave Bailey, Jon Benedict, (of CynergisTek), and Ben Stock (Ordr) about the challenges facing medical device security. We talk about the motivators of attackers, why you can’t rely on backups anymore, what you need to do to take control and maintain defense, and more. We also talk about how to manage these challenges and include a special promotion for listeners to earn a free consultation with our medical device expert (listen for the details). 
Subscribe to CTEK Voices: The Risk Perspective on Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. Remember to like and subscribe to The Risk Perspective, and don't forget to leave your comments for feedback and topic suggestions!

The Risk Perspective is back and so is Mac McMillan!
Kicking off season 3, Mac McMillan, CEO, President, and Founder of CynergisTek joins us to talk about CynergisTek’s Resilience Partner Program, a unique approach that helps organizations evolve their security and privacy posture by reducing cyber risk and helps them build an approach that responds every day.
Listen as Mac talks through this new methodology including why it’s time for healthcare to finally (and actually) make the shift, and understand how CynergisTek’s solutions help map out your resilience journey and keep things simple.
Subscribe to CTEK Voices: The Risk Perspective on Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. Remember to like and subscribe to The Risk Perspective, and don't forget to leave your comments.

“If you don’t bring everyone to the table upfront you're going to wind up with some disconnect..." -David Finn
We are back with part two of our "Say What!?" series! Our guests who include Fred Bishop, from UC Health in Cincinnati, and CTEK's David Finn, Marti Arvin, and Andrew Mahler are here again to wrap up their conversation on the collaboration between security and privacy teams. Together, this group will touch on why report structure is important, and what conflicts of interest(s) could occur. Listen to learn useful information on how to create, and/or improve your organization's cross-collaboration, and more! 
Subscribe to CTEK Voices: The Risk Perspective 
Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released bi-weekly and a transcript of each episode can be found at cynergistek.com. Remember to like and subscribe to this podcast, and leave your comments.

In this “Say What!?” series, our guests discuss why a collaborative working relationship is critical to the success of both privacy and security and how the two can work effectively together. This is a panel discussion, that originates from 2020’s CTEK Summit. It incorporates security and privacy polling data taken from our community that helps drive the conversation. The panel consists of Fred Bishop, the Information Security Officer at UC Health in Cincinnati, David Finn CTEK EVP, and former CIO, Andrew Mahler CTEK  Sr. Manager of Privacy Services, and CTEK Executive Advisor and Compliance guru Marti Arvin (who helps with moderating the discussion). Together our panel dives into the topics of reporting structure, and the tension between a health enterprise and the university within an academic medical center in this part one of our “Say What!?” series.
Subscribe to CTEK Voices: The Risk Perspective 
Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released bi-weekly and a transcript of each episode can be found at cynergistek.com. Remember to like and subscribe to this podcast, and leave your comments.

Jesse Fasolo and David Finn are back for part 2 of how Jesse built a strong security program at Saint Joseph's Hospital in Patterson NJ. Together, David and Jesse wrap up their conversation and discuss topics such as medical device security, M&A security, third-party risk, and more. 
Subscribe to CTEK Voices: The Risk Perspective
Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released bi-weekly and a transcript of each episode can be found at cynergistek.com.