As cyberthreats grow, the best way for providers to ensure their systems are as secure as possible is to implement multiple layers of protection.
In addition, according to an article in Health Data Management, those layers of tools must also be backed by systems that can detect hackers before they break into the system.
It's not just enough to have firewalls; providers should also have intrusion detection and prevention inside those firewalls, especially for specific servers, David Reis, vice president of IT governance and security at Lahey Health, Burlington, Massachusetts, tells HDM.
Having controls in place that can shift through all the data and networks to see if suspicious activity is occurring is one important part of the system at Johns Hopkins University and its medical school, adds Darren Lacey, the institution's chief information security officer and director of IT compliance.
That includes, he says, detection and prevention controls that can see if something gets through, and that can "shape what prevention controls you run in the future."
Moving toward new, layered protection is more important than ever for the industry, especially in the wake of a report that found it is the most targeted yet least prepared sector when it comes to cyberattacks.
Another survey, released in August by KPMG, found that 81 percent of healthcare execs saw cyberattacks at their facilities in the past two years.
To learn more:
- here's the article