From January 2019 to May 2019, there were 28 data breaches reported every month, approximately half of which occurred in the health care sector. While the total number of breaches in 2019 was less than the total reported in 2018, the average breach last year involved thousands of records, led to negative publicity, resulted in significant losses of trust, and cost companies lots of money. In fact, data breaches in 2019 cost an average total of $3.92 million, or about $150 per compromised record.
All it takes is one data breach to damage your reputation and consume your financial and legal resources for months. Such errors can also affect your ability to attract new, talented practitioners for your team, further hindering your growth. For these reasons, it’s critical that you take the time to assess your organization’s cybersecurity risks. Here’s how to boost your data security today.
Start by considering who has access to your internal information. Factor in how you typically secure all laptops and mobile devices used for work purposes not in use. Remind all employees how important it is to change their passwords and back up protected information frequently.
Speaking of employees, how often do you train your team about the importance of cybersecurity and how to safeguard it? It’s never a bad idea to set a regular training schedule to help refresh everyone’s memories on best security practices. And you should organize a re-education session of some kind whenever a new threat is discovered or a new data breach occurs.
Beyond training, consider testing your team’s knowledge and awareness of cybersecurity protocols on a semi-regular basis by sending test phishing emails. They pose zero risk to your organization and enable you to pinpoint specific training areas that might require more attention.
For a security culture to resonate throughout your organization, you need to make sure all management personnel is on board. Also, educate your stakeholders about the need to improve data security and the implications of failing to do so.
To develop a security culture, you need to:
Understand the risks that your organization faces. Identify valuable assets, your current state of security, and your security strategy moving forward. Create a plan for securing your data assets.
A cloud-based system like GEHRIMED can be very helpful here.
Consider a hierarchical cybersecurity policy that enables all your employees to be on the same page and allows you to enforce rules that protect data. Make sure the policy takes everyone’s workflows into consideration as well.
Do so by offering robust cybersecurity training for all your employees.
It’s also important to stress to them that plans may be modified along the way as new needs, threats, or issues arise.
Once they fully internalize this message, it will be much easier for you to enforce compliance throughout your organization.
Last but not least, prioritize your HIPAA risk analysis so every employee understands its importance. The purpose of this assessment is to identify where you’re vulnerable so you can fix those issues. You’re also required to submit proof of the analysis to the Centers for Medicare & Medicaid Services (CMS) to show that data security remains one of your top priorities.
When you use GEHRIMED, you can feel more confident about the security of your data. GEHRIMED is both HIPAA-compliant and ONC-certified, and it provides real-time data backups. The mobile application is equally as secure as the desktop application, and because it’s cloud-based, your data is protected even if a natural disaster or another dire situation occurs where data might otherwise be compromised or inaccessible.
What’s more, our expert security team is always working to keep its finger on the pulse of security and privacy issues and developments. For instance, I’m currently studying the use of behavioral analysis to prevent cyberattacks and identify ccyber criminalsto better serve GPM as its security manager and privacy officer. We use this kind of cutting-edge information to ensure that our products are safe for you to use today and well into the future.
Wednesday, September 28 | Value-based Care,Thought Leadership
As the upcoming EVV compliance timeline is quickly approaching, we thought it would be interesting to discover how the initial phase and implementation of EVV has affected managed care organizations (MCOs), and their provider networks. This blog recaps a recent Netsmart webinar that addressed the details of this topic with the talented Dr. Melissa Berdell, Director Fraud, Waste and Abuse at Highmark Wholecare.More
Monday, September 19 | Human Services,Thought Leadership,Value-based Care
In our most recent blog, The Role of Peers and Mutual Support in Alcoholics Anonymous, we discussed the fascinating history of Alcoholics Anonymous and its contributions to today's health care continuum. Evolving in parallel to the mental health peer movement, AA and its affiliate organizations, e.g., Narcotics Anonymous came to identical conclusions about the unique value of mutual support. Join Denny Morrison, as he unpacks how often peers are used, how they are credentialed and how they affect the economics of health care in the United States.More
Monday, September 12 | Post-Acute Care,Thought Leadership,Netsmart in the Community,Legislative/Policy
Ready access to quality home healthcare services is critical to the future of our nation’s healthcare system and the millions receiving these services today. Jen Sherman, community strategist, Netsmart will be a voice for home health providers in Washington D.C. at the upcoming NAHC Advocacy Day and shares why the proposed rate cuts by CMS will leave a devastating negative economic and operational impact on home health and post-acute providers.More