Healthcare Information Security

Cloud Security

Boston researchers look at cloud encryption needs

by Patrick Ouellette

A group of Boston researchers will be involved in a project part of the National Science Foundation’s Secure and Trustworthy Cyberspace program, which will take a broad look at cloud computing innovation and, in party, try to find...

Mitigating common healthcare cloud IT security issues

by Sal Ramanan CISSP

Cyber security threats in the healthcare industry are continually on the rise and the value of an identity data set is about $50 per patient record. So what can healthcare providers do to avoid these attacks? If you look at the recent...

Factoring trust, BAAs into health cloud security decisions

by Patrick Ouellette

Trust in healthcare IT security can be a fickle concept, but is also an absolute necessity if an organization is to work with a cloud computing provider. During a panel discussion titled “Data Security in the Cloud: Leveraging the...

How healthcare providers should reinvest in IT security

by Patrick Ouellette

For years, Reza Chapman, who works in the Health Care Advisory Services practice at EY (formerly Ernst & Young), has seen healthcare organizations not invest as much as needed in IT security. As a result of HIPAA Omnibus Rule...

Cloud HIPAA BAA considerations for healthcare providers

by Patrick Ouellette

Most healthcare cloud security discussions these days usually involve a cloud provider’s willingness (or perhaps lack thereof) to sign a HIPAA business associate agreement (BAA). What was once considered an agreement that vendors...

How does the rising demand for CISSPs affect healthcare?

by Nicole Freeman

In a world plagued by data breaches, more and more organizations and companies are seeking cybersecurity experts to add to their teams in hopes of avoiding an incident of their own. While an ounce of prevention may be worth a pound of...

Healthcare cloud security resources, advice for providers

by Nicole Freeman

Healthcare providers and their business associates (BAs) are gradually becoming more comfortable with the concept of storing data off-site and online in a cloud environment. While there is ease of access in having a central, accessible...

Microsoft, Google talk cloud security trust at RSA 2014

by Patrick Ouellette

Microsoft took some time away from taking public jabs at Google to join hands with the IT giant on the topic of trust while analyzing the current state of cloud security during last week’s RSA Conference 2014. For healthcare...

RSA Conference 2014 Day One: Cloud Summit, CISO values

by Patrick Ouellette

Though there has been plenty of discussion on RSA’s relationship with NSA leading up to this week’s 23rd annual RSA Conference 2014, held February 24-28 at the Moscone Center in San Francisco, there are plenty of IT security...

HIMSS Privacy, Security Director discusses best practices

by Patrick Ouellette

Lee Kim, JD, HIMSS Privacy and Security Director, and Steven Fox will present at HIMSS14 on “Hidden Pitfalls with Cloud, Mobile Technology and Mobile Data“. They will review how a healthcare organization should examine...

DDoS attack considerations for healthcare organizations

by Patrick Ouellette

Recent discussions of distributed denial-of-service (DDoS) threats in healthcare have mainly been in connection with a supposed DDoS attack on Healthcare.Gov that failed last fall. However, the conversation shouldn’t be limited to...

Amazon Web Services encryption partners try new strategies

by Patrick Ouellette

2014 is a new year, but public cloud vendors are still trying to find ways to get healthcare organizations to believe in public cloud encryption and key management. For example, Amazon Web Services (AWS) Marketplace has a number of...

Public cloud survey cites security perception as an obstacle

by Patrick Ouellette

A recent survey that polled nearly 250 Internet infrastructure decision makers world-wide aimed at getting a better idea of public cloud adoption, requirements and challenges across the different industries, including healthcare. Though...

Healthcare privacy, security 2014 predictions: Future trends

by Patrick Ouellette

A hectic 2013 has certainly set the stage for a busy 2014 packed with healthcare organizational policy changes and technology advancements. Based on healthcare expert feedback and interviews in 2013, has come up with...

UCHealth picks Office 365: The BAA effect on cloud security

by Patrick Ouellette

We know the benefits of cloud computing for healthcare organizations – a subscription model can save an organization from the heavy costs of owning and maintaining its own servers. But there has been great cloud trepidation among these...

Citrix, VMware offer software assisting HIPAA compliance

by Nicole Freeman

New Citrix ShareFile Cloud aids HIPAA compliance Citrix ShareFile Cloud for Healthcare, Citrix’s virtual private cloud offering for file sharing, is now available to healthcare organizations looking to secure and manage protected...

Focusing on web-based threats in a health cloud environment

by Patrick Ouellette

From a regulatory and technical perspective, securing EHRs in a cloud environment both creates and eliminates different types of risks. Ensuring patients’ EHR data is safe is important because of the nature and concentration of that...

Surveying healthcare cloud encryption options, strategies

by Gilad ParannNissany

Healthcare organizations are mainly attracted to cloud computing for its flexibility, elasticity and the pay-as-you-go economic model. But since these features attracted them to the cloud in the first place, they don’t want to...

Reviewing future health security projects: DLP, PCI compliance

by Patrick Ouellette

Ross Dworman, Information Security Manager at Northwestern Memorial Hospital, recently spoke with about how plans for a virtual desktop environment would affect Northwestern’s mobile plans, but the organization...

Combing through health cloud security vendors: CISO options

by Patrick Ouellette

Sometimes, you have to provide those who are unsure about the realities of cloud computing with a reality check. Bruce Forman, Chief Information Security Officer (CISO) of UMass Memorial Medical Center, often presents on cloud computing...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...