Thursday, January 16 | Thought Leadership, Partnerships and Collaboration

Security Management: Building Your Security Roadmap

By Netsmart

With the recent spike in data breaches, there is no better time than now for healthcare agencies to take a deeper look at the security policies and controls they currently have in place to protect data. With healthcare organizations leading the way on both (1) most targeted and (2) costliest breaches, now is a critical time to evaluate how well your organization is responding to the imminent threat.

 

If you are wondering what kind of cost range these breaches provoke, brace yourself. According to the 2019 Cost of a Data Breach Report, healthcare agencies top the list for the ninth year in a row with an average cost of $6.45 million per breach. That’s a whopping 60% more than the average of all other industries.

 

How do you know if you are a likely target? If you manage a healthcare agency, you are automatically a prime target. However, if you lack a security governance policy or don’t adhere to it, you are even more likely to become a victim of a malicious attack.

 

Some potential risks include hacking or an IT incident, unauthorized access or disclosure, as well as theft. The cost of a breach adds up for smaller agencies too, and one breach could close their doors for good. Many organizations think they can fly under the radar of hackers, but unfortunately cyber attackers don’t discriminate against operational size. Many times the smaller agencies with less sophisticated mechanisms in place make for easy targets.

Aside from patient record costs, organizations can face hefty legal fees, financial penalties and lost revenue due to operational downtime in wake of the security breach. A Protected Health Information (PHI) hack can significantly damage an organization’s reputation, causing loss of business and notoriety among the community.

Over 35 million records were exposed this year alone – that’s about the size of the population of California. With so many people’s personal medical history at stake, the loss of client trust plays a big factor in the cost of a data breach. While your agency may remain solvent after an attack, it could impact the future growth of the organization for many years to come.

You may be asking yourself, where do I begin to ensure I have a strong security policy?

Much like planning a big trip, few people would try to drive from New York to California without a map. Having a security governance policy in place is an important part of managing an organization that handles PHI, and you cannot afford to go without a security roadmap. The alternative is too risky.

The first step in building out your security governance framework is understanding where you are and what you need to get where you want to go. A security assessment will identify any major gaps you might have around security and provide a starting point for building out your strategy. Having a baseline report will help you know where to direct focus and invest budget.

Many times, organizations will piecemeal their security and add certain measures here and there, but security best practices involve having a comprehensive plan that works in cohesion. When it comes to creating a security plan, you need to not only actively work to protect against breaches, but also devise a roadmap for how your organization can mitigate risk and react to current and evolving security threats.

In this series we will take a closer look at cybersecurity solutions to detect and protect, and the importance of having a business continuity plan in place should an incident occur.

 

 

Meet the Author

Netsmart - color - PNG
Netsmart ·

From the CareThreads Blog

Webinar Recap: What’s Next for MCOs After EVV Compliance

Wednesday, September 28 | Value-based Care,Thought Leadership

As the upcoming EVV compliance timeline is quickly approaching, we thought it would be interesting to discover how the initial phase and implementation of EVV has affected managed care organizations (MCOs), and their provider networks. This blog recaps a recent Netsmart webinar that addressed the details of this topic with the talented Dr. Melissa Berdell, Director Fraud, Waste and Abuse at Highmark Wholecare.

More
CareThreads Blog Stock Image for SiteCore (370 × 158 px) (1)

Part 5: Current State of Peers in the United States - Demographics and Economic Impact

Monday, September 19 | Human Services,Thought Leadership,Value-based Care

In our most recent blog, The Role of Peers and Mutual Support in Alcoholics Anonymous, we discussed the fascinating history of Alcoholics Anonymous and its contributions to today's health care continuum. Evolving in parallel to the mental health peer movement, AA and its affiliate organizations, e.g., Narcotics Anonymous came to identical conclusions about the unique value of mutual support. Join Denny Morrison, as he unpacks how often peers are used, how they are credentialed and how they affect the economics of health care in the United States.

More

A Call for Action: Devastating Medicare Rate Cut Proposed for Home Health

Monday, September 12 | Post-Acute Care,Thought Leadership,Netsmart in the Community,Legislative/Policy

Ready access to quality home healthcare services is critical to the future of our nation’s healthcare system and the millions receiving these services today. Jen Sherman, community strategist, Netsmart will be a voice for home health providers in Washington D.C. at the upcoming NAHC Advocacy Day and shares why the proposed rate cuts by CMS will leave a devastating negative economic and operational impact on home health and post-acute providers.

More