Tracking confidential data a major worry in healthcare security

Uncertainty about where sensitive and confidential data is located causes more worry for security pros than hackers or malicious employees, according to a new survey from the Ponemon Institute.

The report, based on a poll of 1,587 IT security practitioners in 16 countries, focuses on the state of data-centric security, which it describes as a security policy that follows data wherever it is replicated, copied or integrated.

Among the findings:

  • Fifty-seven percent of respondents said not knowing the location of sensitive or confidential data is what keeps them up at night; hackers, non-compliance with regulations and malicious employees ranked much lower among their concerns
  • Twenty-four percent said they don't know the location of their organization's sensitive or confidential unstructured data, such as data contained in emails or files; for the survey overall, only 7 percent of respondents said they know the location of all their organization's unstructured data
  • 40 percent said that in the event of a data breach involving unstructured data, they would not be able to detect it

These findings stand in contrast to those of a recent KLAS report that found identity management and unauthorized data access by employees to be healthcare providers' biggest security and privacy concerns. However, mobile security policies ranked high on both surveys.

Healthcare executives speaking at the iHT2 conference in Boston recently outlined how they've moved beyond trying to simply control access to patient data in favor of better tracking how information flows within the organization.

Larry Ponemon, founder and chairman of the Ponemon Institute, said in a Q&A posted to the website of Informatica, which sponsored the report, that when information is spread out and unstructured, ownership and accountability are difficult to discern.

"People trained in security also view IT as accountable for the security domain," Ponemon said. "But in today's world of cloud and BYOD, it's really a shared responsibility with IT serving as an advisor, but not necessarily having sole accountability and responsibility for many of these information assets."

To learn more:
- download the report (registration required)
- read the Q&A

Free Webinar

Take Control of Your Escalating Claim Costs through a Comprehensive Pre-payment Hospital Bill Review Solution

Today managing high dollar claim spend is more important than ever for Health Plans, TPAs, Employers, and Reinsurers, and can pose significant financial risks. How can these costs be managed without being a constant financial drain on your company resources? Our combination of the right people and the right technology provides an approach that ensures claims are paid right, the first time. Register Now!

Suggested Articles

JetBlue, Lufthansa, Swiss International Airlines, United Airlines, and Virgin Atlantic will roll out the CommonPass mobile app in December.

The pandemic is transforming the way the healthcare industry handles payments. Here are key takeaways on the benefits of automated payments.

After hitting the high-water mark in the third quarter, global healthcare funding is projected to slow down in the final quarter of 2020.