Safeguarding Our Digital Frontiers: Cybersecurity Best Practices for Healthcare

Author: Chris Kirchov, CISSP, CCNP-S, CSIS, CIOS Assoc. Director, Network Operations & Security U.S.

October is Cybersecurity Awareness Month, and this annual event reminds us of the critical importance of safeguarding our digital lives and protecting private information. In today's digitally connected world, cybersecurity is not just a buzzword but a critical necessity. For those of us in the healthcare industry, the stakes are particularly high, and the risks are constantly evolving. Therefore, it's imperative that we all play our part in fortifying our digital defenses.

Common Cybersecurity Threats

First, let's acknowledge the adversaries we face in the digital realm. Cyber threats come in various forms, from phishing emails that lure unsuspecting victims to ransomware attacks that hold critical data hostage. Malware, data breaches and insider threats also loom large.

ORemote Work and Network Vigilance

With remote work now the norm, our networks extend beyond the office walls. This shift presents both opportunities and challenges. While it offers flexibility, it also exposes our corporations to a broader attack surface. Employees must remain vigilant and adhere to corporate policies and standards, whether working from the office or remotely.

Evolving Threat Landscape

Cyber threats evolve at breakneck speed. Hackers are continually devising new tactics to exploit vulnerabilities. We must adapt our defenses accordingly. As an example, consider the rise of zero-day vulnerabilities, which are flaws in software unknown to the vendor. Staying ahead of these threats demands proactive monitoring and continuous learning.

A Tale of Vigilance

Allow me to illustrate the importance of vigilance with a recent incident. A fellow healthcare provider fell victim to a ransomware attack due to a seemingly harmless email

attachment. The consequences were dire, with patient records exposed and forcing the severing of network connections with partner organizations. This crippled service care not only for the company but for their partnering providers as well. This incident underscores the critical need for robust cybersecurity practices.

To see a list of recent security breaches of unsecured protected health information, visit the U.S. Department of Health & Human Services - Breach Portal website.

Consequences of a Breach

A cybersecurity breach can have devastating consequences. For individuals, it may mean identity theft, financial loss or even personal safety risks. For companies, the fallout includes financial penalties, legal liabilities, damage to reputation and a loss of trust among patients and partners.

Corporate Responsibilities

It is the responsibility of the organization to establish a robust security posture grounded in a set of key principles and practices. In this section, we will explore these pillars, which collectively form the foundation of our commitment to data security and integrity. By embracing these principles, we fulfill our corporate responsibilities and actively contribute to a more secure digital landscape.

1. Education: Conduct regular training and awareness programs to ensure that employees are wellinformed about the latest threats and best practices.

2. Access Control: Restrict access to sensitive data, granting permissions only to those who require it for their roles.

3. Multi-Factor Authentication (MFA): Implement MFA to require employees and other system users to provide two or more forms of verification before gaining access.

4. Password Management: Enforce strong password requirements to assist employees in keeping their credentials secure.

5. Data Encryption: Encrypt data at rest and in transit to ensure that sensitive information remains unreadable if it falls into the wrong hands.

6. Regular Updates: Keep software, operating systems and antivirus programs up to date. Most breaches occur through known vulnerabilities that could have been patched.

7. Incident Response: Implement a robust incident response plan to contain and mitigate the impact of breaches promptly.

Embracing these cybersecurity pillars will help us strengthen our digital defenses and contribute to a safer online environment for ourselves, our staff and our patients.

Employee Responsibilities

Employees also play a crucial role in maintaining a secure work environment. Their responsibilities include:

• Following corporate cybersecurity policies and guides.

• Ensuring that email notifications sent from the corporate Security Team are promptly read.

• Utilizing a password manager to store and manage online credentials.

• Updating passwords regularly and using strong, unique combinations.

• Applying cybersecurity best practices in their personal lives to protect personal information.

• Securing home networks and personal devices to prevent cyber threats.

• Being vigilant against phishing attempts and other malicious activities.

In the ever-evolving landscape of cybersecurity, staying informed is not just beneficial — it’s imperative. Being aware of the latest threats, vulnerabilities and best practices is crucial for safeguarding our digital environment. Here are some ways to stay informed:

1. Industry News and Publications: Reliable cybersecurity publications like "Dark Reading," "CyberScoop" and "KrebsOnSecurity" provide up-to-date news, in-depth analysis and expert insights into the latest cyber threats and trends.

2. Government Resources: Government agencies such as the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Trade Commission (FTC) offer valuable resources and alerts on emerging cybersecurity threats. Their websites often provide practical tips and guidelines for individuals and organizations.

3. Threat Intelligence Feeds: Subscribing to threat intelligence feeds from trusted organizations, such as FBI InfaGard and AlienVault, can provide real-time information about known threats, indicators of compromise (IOCs) and emerging attack vectors.

4. Professional Associations: Membership in cybersecurity-focused organizations like ISC2, the International Association of Privacy Professionals (IAPP) and ISACA offers access to industry research, webinars and networking opportunities.

5. Security Blogs and Forums: Many cybersecurity experts maintain blogs and participate in forums where they share their knowledge and insights. Examples include Brian Krebs' KrebsOnSecurity blog and the SANS Internet Storm Center.

6. Vendor Alerts: For organizations that use specific cybersecurity solutions, sign up for alerts and updates from those vendors. They often provide information on vulnerabilities and patches related to their products.

7. Webinars and Conferences: Attend cybersecurity webinars and conferences, such as RSA Conference and Black Hat, to gain knowledge from experts and stay updated on the latest trends and threats.

8. Online Courses and Certifications: Invest in cybersecurity training and certifications like Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM). These programs provide deep insights into security practices and trends.

9. Local User Groups: Join local cybersecurity or information security user groups. These gatherings often feature presentations on current threats and offer networking opportunities with like-minded professionals.

10. Social Media: Follow respected cybersecurity professionals and organizations on social media platforms like X (formerly Twitter) and LinkedIn. These platforms are frequently used to share breaking news and insights.

Cybersecurity is a collective responsibility, especially in the healthcare industry. The ever-expanding digital landscape and the increasing sophistication of cyber threats demand a unified effort to protect our organization's sensitive data, our patients' privacy and our own personal information. By enforcing corporate policies, staying informed and practicing good cybersecurity hygiene, we can fortify our digital defenses and safeguard our digital frontiers. Let us embrace Cybersecurity Awareness Month as a call to action. Let us pledge to strengthen our cybersecurity defenses, not just in October but throughout the year. Together, we can create a safer cyber world for all.