HEALTHCARE SECURITY FORUM: A HIMSS EVENT
Boston, MA, Oct. 15-16, 2018
Richard Staynings is a renowned thought leader, author, public speaker and evangelist for improved cybersecurity across the healthcare and life-sciences industry. He currently serves as a member of the HIMSS Privacy and Cybersecurity Committee and is SVP chief security and trust officer at Clearwater.
CIO, CISO, CRO, CTO, partner and principal are some of the titles Richard has held or continues to hold. With more than 25 years’ experience of both cybersecurity leadership and client consulting, Richard has lived in more than 30 countries and delivered innovative solutions to organizations in all of them. Working in both an executive leadership and consulting capacity, Richard has sat on both sides of the advisory table and can appreciate views through both conceptual lenses.
Richard has assisted in the success of innovative start-ups, to many of the world’s most successful public companies. Some of his more notable successes include work for: Amgen, Children’s National and Children’s Hospital of Philadelphia, Intermountain Healthcare, and PeaceHealth to name a few.
After spending many years based out of the UK, Australia and various parts of Asia, Richard now resides in the shadows of the Rocky Mountains in Boulder, Colorado. Although he doesn’t get to spend a lot of time at home, Richard is active in his local community and serves on several boards in a pro-bono capacity.
As defenders we are outnumbered five to one. What are the proactive steps and defenses that a healthcare security team can take to evaluate threats, vulnerabilities and risks and to prepare and protect payer and provider institutions from attack?
This panel session will discuss the healthcare threat landscape, vulnerabilities, pen testing and other forms of technical vulnerability assessment, compliance, risk analysis and remediation including effective patch management and the need for compensating security controls and other risk mitigation strategies where patching is not possible.
Your organization has just been hit with a large-scale breach. As security leader what do you do first?
This CISO panel session will discuss prioritization and the sequence of activities that you should follow when dealing with a major breach including executive and other internal communication, external breach notification including affected individuals, OCR, and state regulatory bodies. With a 72-hour breach notification window fast becoming the norm, you don’t have long to think about things making sure that it’s done right!