- July 30, 2020
- Posted by: Pat Riot
- Categories: CyberSecurity, Endpoint Security, Healthcare, Managed Detection and Response, Security Operations
Hospitals do everything in their power to save lives. So what happens when a hospital has a life-threatening event?
What’s a hospital supposed to do?
Hospitals are expected to do everything in their power to save lives. There is no means to an end when it comes to saving lives. Supplies, medicine, resources and money are all ‘expendable’ in order to give the patient an opportunity for another day. The only two resources we can’t get back are our time and our lives. If you were able to save the patient’s life, then your time was certainly not wasted. If, unfortunately, the big man upstairs said it was time for the patient to come home – your time was valued, and your efforts appreciated. But those are people. What happens when the institution that is tasked with saving lives has a ‘life threatening event?’ Who are the doctors that are going to do everything in their power to save the life of the hospital?
Let’s go through the roles in a healthcare organization at a very superficial level. As a practitioner, either at a private or public entity, you save lives. That’s your job. The entity may have a suite of C-level executives or an office manager to run the day to day operations. That’s their job. However, IF you have an IT team, their job can vary. Some entities expect their IT teams to simply keep them connected to the internet and have a security team for cybersecurity. Unfortunately for IT teams however, 90% of the healthcare organizations are not that kind. They expect their IT teams to handle all aspects of the clinical & business systems and operations. These expectations include but are certainly not limited to log/data reporting, electronic health/patient records, tele-med and the rest of the digital infrastructure in its entirety, which includes overseeing all issues and complexities related to cybersecurity and compliance. To put it into perspective, 90% of healthcare organizations are expecting their trauma surgeons to also do cardiovascular and neurosurgery as well.
So how do you hire a trauma, cardio, and neuro specialist for less than the cost of one specialty physician? Outsource! Now before you write me off entirely – let me explain. We are not asking you to outsource your “secret sauce.” Outsourcing involves the utilization and integration of a 3-step process. The first is Endpoint (device) Management – making sure the actual devices themselves are secure and up to date. The second is the SOC team. We covered that extensively in our previous blog posts, but a Security Operations Center is the centralized location in which the human, managerial aspects are carried out and the software is supervised and piloted. Lastly, and arguably most importantly, Managed Detection and Response (MDR) is the way in which the SOC team proactively manages the day to day security role(s).
The beautiful thing about outsourcing certain aspects of your cybersecurity is that it frees up your IT team to focus on healthcare related projects. It’s not that we are asking you to get rid of your IT team. What we are saying is that given the circumstances of today’s society, the nature of the work being asked to be done, and the scarcity of good security engineers can make it difficult to find – let alone retain. Outsourcing simply eliminates the need to consistently post jobs online or the overwhelming feeling of anxiety when you receive a false positive. If your organization operates like the 90% then you must realize the kind of stress that they are required to deal with daily. Outsourcing MDR activities amalgamates things like incident response, vulnerability scanning and penetration testing. It also combines SIEM with intrusion detection and allows for the opportunity to reallocate valuable resources to ‘better’ organizational priorities that improve the quality of care. Outsourcing also alleviates those false positives mentioned previously. With an outsourced security team, false positives can provide a reassuring feeling that your systems are being managed. Instead of not knowing what type of incident occurs, you truly know that it is exactly that – a false positive.
At Steel Patriot Partners we emphasize the importance in a partnership. Not only do we exceed the needs our clients have regarding cybersecurity and compliance requirements. But we scale with your organization as you grow. Any outsourced cybersecurity company should be able to accommodate your existing on-site infrastructure as well as monitor and secure your cloud space. If you would like some answers to the questions about outsourcing cyber security, please don’t hesitate to reach out to one of our experts. Our passion is cyber security and the empowerment that comes from education. MDR, compliance, SOC as a service, or any other topic regarding the protection of your patient/client data doesn’t have to be as elusive as it’s often cracked up to be. Just give us a follow on social media (Facebook, Twitter, LinkedIn), send us an email, give us a call at 703-297-4405 or contact us directly! Regardless of the method you choose, we look forward to hearing from you and – as always, we appreciate your time for reading this content! Stay secure!