Respond, Control and Track: CISO Speaks to Key Data Security Approaches

Subscribe on your favorite platform:

About the Podcast: The CyberPHIx is a regular audio podcast series that reports and presents expert viewpoints on data security strategy for organizations handling patient health or personal information in the delivery of health-related services. These timely programs cover trends and data security management issues such as cybersecurity risk management, HIPAA and OCR compliance strategy and vendor risk management. Meditology Services, the healthcare industry's leading security and compliance firm, moderates the discussions with leaders in healthcare data security.

In this episode of The CyberPHIx, former healthcare system CISO and Meditology Services Director Keith Henkell, shares his approach to key data security activities including Privileged Access Management, OCR Audit Response, and Security Metrics Tracking techniques.

Keith provides strategies for reducing privilege-related breaches from occurring, for example, implementing multifactor authentication and limiting local admin accounts.

Keith also provides tips for using security metrics to craft a story for upper management:

  • maturity score of your overall program
  • coverage indicators from existing security tools
  • risk registers