Climate Change: It's about Managing Risk, Not Just Compliance

September 8, 2015
9:00pm - 9:45pm

Almost without exception health care companies today pursue an information security approach that is designed to be compliant with both state and federal regulations on the handling of sensitive data and how to respond to a breach of security. But compliance alone is not enough. Regulations often spring from specific security failures that have already happened, while new security threats are emerging all the time. Health care organizations that only look in the rear view are usually behind the security curve. In his opening keynote address, Jim Routh, chief information security officer at Aetna, will make a business case showing that security programs only focused on compliance are an expensive proposition and don't adequately prepare for security threats and vulnerabilities on the horizon. Routh proposes that a more effective program is a risk-based one that can make real-time changes to controls to more effectively combat current and emerging threats to IT security and infrastructure.

In his opening keynote address, Jim Routh, chief information security officer at Aetna, will make a business case showing that security programs only focused on compliance are an expensive proposition and don't adequately prepare for security threats and vulnerabilities on the horizon.  Routh proposes that a more effective program is a risk-based one that can make real-time changes to controls to more effectively combat current and emerging threats to IT security and infrastructure.

Speakers

Jim Routh, CISM, CSSLP

Chief Information Security Officer
Aetna

Get Updates

Sign up to get the latest information on upcoming events.

 

Subscribe