Friday, February 2, 2018, 9:25 AM - 10:15 AM
Sri Bharadwaj CISSP, PMP, Director, Information Services and CISO, UC Irvine Health
Stan Banash , Chief Information Security Officer, Children's Hospital of Orange County
Chris Convey CISA, CISSP, MS, Vice President, IT Risk Management and CISO, Sharp Healthcare
Jason Johnson CISSP, Information Security Officer, Marin General Hospital
Christian Abou Jaoude , Director of Enterprise Architecture, Scripps Health
The May 2017 cybersecurity attack dubbed “WannaCry” grabbed storylines internationally and across the healthcare landscape as tens of thousands of hospitals, organizations, and agencies across 153 countries had their data held hostage.
The enhanced crypto-locking worm spread quickly, with a headliner target of the National Health Service (NHS) in Britain, which resulted in extended downtime, rescheduling of procedures, and in numerous cases preventing access to care for patients. The worm propagated and spread using a Microsoft platform vulnerability related to the Server Message Block protocol, which revealed many healthcare organizations’ weak points in the areas of security standards compliance, network structures, and disaster recovery protocols.
In this special panel discussion, Healthcare Informatics welcomes a panel of top security experts, as they recall and summarize the top lessons learned in security compliance and organizational frameworks behind the WannaCry attack. Listen in as our panelists provide their perspectives, and delve into the nature of the attack—diagramming how this threat was uniquely dangerous for healthcare organizations, and why security compliance and protocols for disaster recovery allowed his organization and others to manage the situation quickly and effectively.