Artwork for podcast This Week Health: News
Today: Advice for Healthcare CISOs from an Enterprise Risk Management Director
Episode 1653rd August 2022 • This Week Health: News • This Week Health
00:00:00 00:04:44

Transcripts

This transcription is provided by artificial intelligence. We believe in technology but understand that even the smartest robots can sometimes get speech recognition wrong.

Today in health, it I'm on vacation. So I'm going to be highlighting some of the great content we have on town hall. And so this is going to be an episode from a town hall host. And their guest more on that in a minute. My name is bill Russell. I'm a former CIO for a 16 hospital system and creator of this week health. A set of channels dedicated to keeping health it staff current and engaged. We would think our show sponsors who are investing in developing the next generation of health leaders, accordion dynamics, Quill health tau site nuance.

Canon medical and current health. Check them out at this week. health.com/today. All right, I'm on vacation this week. So I'm taking this time to highlight the great interviews that our hosts have done on the town hall show.

Today we have Samuel Hill director of product marketing at mitigate. And Justin Heil the director of enterprise risk management at Baxter international. . And they're going to talk a little bit about device vulnerability in hospitals and working with partners to deliver better healthcare here you go

Justin, you've been working in this space for a long time what advice would you give a CISO in their organization in healthcare as they're looking at their clinical devices? Advice for helping to make sure that their clinical devices are as secure and reliable as possible.

Assets. Understanding where your assets are and understanding what the bills of those assets are that you've deployed and managing those and constantly checking and scanning and making sure what your software building materials have, how it's developed. And keeping that front and center otherwise things fall through the crack. What you have out there are new vulnerability or scrambling to assess what products may be impacted or may not be impacted. That's that's one of the first big steps is making sure that you have a handle and control over that. And you're consistently have surveillance over those products.

And then what, how would you encourage them or coach them if you would on working with their medical device, manufacturing partners,

folks like Baxter and you guys, again, you guys have a very large portfolio that makes a lot of devices that support so many hospitals all over the world.

How would you coach, what advice would you give them? As far as working with their MDM ECOS?

Yeah.

and so that's one of the big challenges is to be like a pre procurement. That's, that's one of the big challenges we're running into, all the questionnaires that, that are being done.

a lot of them have hard, it spin on them, but when you're really dealing with a medical device,

there there's different things that you have to deal with.

But one of the big things that I see that is sometimes missing is.

we run through the procurement process where the devices are placed,

are, are procured. It goes through a security review, and then sometimes it's a handoff to the clinical it team that,

now they're responsible for deploying that. I would recommend that there's still oversight and how those products are figured how the active directories are configured. Because sometimes those groups get a little liberal on how they're integrated or deployed that could create risk because,

it's just easier for them to work with that product.

So I, I think that's one of the things that the others. Th the due diligence that is done on pre procurement is, is pretty solid nowadays.

but just making sure as, as it's deployed working with the manufacturer to review and validate and make sure things are deployed correctly and configure correctly with respect to security,

Fantastic. So keep checking back for more of these great interviews. I wouldn't be returning from my vacation on August 8th. We did prerecord some news day episodes. So every Monday you're going to have a nude news day episode, and then we'll be dropping these interviews until I returned on August 8th.

So that's all for today. If you know someone that might benefit from our channel, please forward them a note. They can subscribe on our website this week health. Dot com or wherever you listen to podcasts, apple, Google, overcast, Spotify, Stitcher, you get the picture. We are everywhere. We want to thank our channel sponsors who are invested in our mission to develop the next generation of health leaders.

Gordian dynamics, Quill health tau site nuance, Canon medical, and 📍 current health. Check them out at this week. health.com/today. Thanks for listening. That's all for now.