ProCircular Information Security Experts Corner

Let your Risk Register be your Guide

Posted by Brandon Blankenship on Jan 30, 2019 12:46:00 PM

“What are the top 7 things you can do to protect your business from hackers?”  Have you ever read a list like that on the internet? In the cybersecurity realm, they’re everywhere. I’ve even assembled and presented one of those lists to a group of business owners myself. They tend to point out things like user awareness training, patching and passwords.  All noble things to get your arms around, of course, but are they useful to a client?  Sometimes I feel as though those lists, as true as they are, are about as useful as telling a football team to “score touchdowns”, or “guard the quarterback.” Yeah, I know that scoring touchdowns is good… but how? 

Read More

Topics: it risk assessment, Cybersecurity, cybersecurity plan, NIST, DDOS, HIPAA

Diagnosing the Cybersecurity Bug

Posted by Solomon Smith on Apr 24, 2017 3:06:59 PM

Industry Trends

Cybersecurity in the healthcare field has gone through a lot changes the past few years. In 2016 there was a significant jump in the total number of healthcare specific cybercrimes.  According to SecurityIntelligence there was a 71% increase of confirmed data breaches in the healthcare sector from 2015 to 2016.  Drilling down on that increase revealed that most of the jump was from external (aka "hacking" or ransomware or malware") followed by internal non-malicious (aka accidents from insiders).  Trends are showing that cybercriminals have found more value in healthcare data and the potential for long term use is much higher because it is more difficult to change an individual’s "health data".  Another eye-opener is that the type of healthcare entities affected is not limited to hospitals.  Business associates, specialized care providers and healthcare plan have all been targets for cyber crime.  Oncology, anesthesiology, orthopedic, and radiology are a few of the specific entities that were in the top 10 largest healthcare breaches of 2016.  This data tells us that cybercriminals will target or find data outside of the large medical providers and may even be targeting the organizations that have lagged behind in implementing security controls.  

Read More

Topics: Cybersecurity, healthcare, HIPAA, Data Security, Information Security, Network Security

Life Sciences Information Security

Posted by Aaron R. Warner on Nov 9, 2016 4:13:12 PM

 A broad overview of the unique challenges serving biotech, pharma and academia

Read More

Topics: Life Sciences, Data Classification, Information Security, Cybersecurity, Network Security, HIPAA, Intellectual Property Protection