BayCare Health System’s VP & CISO, Thien Lam, along with CIO Tim Thompson and CTO Scott Patterson, hosted a very focused one-day SI CISO Case Studies Workshop at their headquarters in Clearwater, Florida in January 2019.
Chief Information Security Officers (CISOs) and other healthcare IT security executives (individuals and teams) from 12 SI Member organizations from around the country gathered at BayCare Health System on January 16, 2019, for an SI CISO “Show and Tell” Workshop which included a comprehensive review of leading practices in cybersecurity.
Thien Lam opened the discussion by welcoming the group and encouraged open and frank dialogue about successes and failures in healthcare IT security. Attendees were involved in detailed discussions including strategies around data-breach response and recovery, and cybersecurity preparedness and prevention.
Case study presentations delved into the hot topics of: third-party breach, identity theft, ransomware, data-center failure and FBI/ OCR communication; prevent/detect/respond strategies, SIEM/SOAR/Incident Response playbooks risk assessment/measurement analysis and reporting; and operational impact/emergency preparedness planning and training.
Rich discussions were also held around network segmentation, ePHI inventory, and penetration testing; security threat intelligence technologies and ServiceNow/Remedy integration (and lessons learned); and DevSecOps planning and disaster-response tabletop exercises.
This event was designed to create an opportunity for quality personal networking and open sharing of strategies, techniques and lessons learned.
A private repository has been set up for CIOs and CISOs to access materials from this Workshop, along with other documents for sharing.
Plans for another CISO workshop are already in the making! Keep an eye out for information about future CISO Workshops hosted by CHRISTUS in Fall 2019 and by Banner Health in Winter 2020.