Friday, April 15, 2016

Healthcare Information Security Performance Declines

Cybersecurity in healthcare agency has reached a plateau as protection strategies fail to keep up with the innovation of attackers who find to steal patient information and intellectual property. According to a latest report by 451 Research on behalf of Vormetric, a Thales company, IT risk management remains a 'business as usual' affair for most healthcare agencies.


"Like most regions and verticals, healthcare agencies must identify that doing more of the same will not help us achieve a better security posture," writes Garrett Bekker, senior analyst for 451 and author of the report. "As an industry, we need to pay more attention to new techniques for stopping attacks as well as tracking potential threats more rapidly and narrowing the window of exposure."


The survey indicated that for the most part, compliance still highly drives healthcare security in spite of the fact that compliance attempts do not always directly equate to improved risk management results. Among U.S. healthcare respondents queried for the survey, 61 percent of agencies see compliance as the main driver for data security, far above the U.S. average of 54% percent of all organizations. And 68 percent of healthcare organizations view compliance as 'very' or 'extremely' effective at improving security, the greatest ratio among all verticals, including finance and banking. However, the results of these attitudes have been lackluster at best, with 63 percent of these organizations experiencing a breach at some point in the past and only about 14 percent saying these past breaches offered a good reason for securing sensitive data.

No comments:

Post a Comment