The CyberPHIx: Meditology Services Podcast

By: Britton Burton | Sr Director of Product Strategy
Listen for free

  • Summary

  • The CyberPHIx is a regular audio podcast series that reports and presents expert viewpoints on data security strategy for organizations handling patient health or personal information in the delivery of health-related services. These timely programs cover trends and data security management issues such as cybersecurity risk management, HIPAA and OCR compliance strategy and vendor risk management. Meditology Services, the healthcare industry's leading security and compliance firm, moderates the discussions with leaders in healthcare data security.
    @ 2023 Meditology Services, LLC
    Show more Show less
Politics & Government
Show more Show less
activate_Holiday_promo_in_buybox_DT_T2
Episodes
  • Artificial Intelligence: Use Cases and Cybersecurity & Privacy Implications in Healthcare

    Artificial Intelligence: Use Cases and Cybersecurity & Privacy Implications in Healthcare
    Jul 31 2023

    Join us for this episode of The CyberPHIx podcast, where we hear from Morgan Hague.  

    Morgan is the manager of IT Risk Management at Meditology Services and has been in the industry for nearly a decade. He has worked with hundreds of organizations in an advisory capacity helping to assess or audit security functions to drive program maturity. He also leads Meditology’s strategic risk management consulting service line and is a subject matter expert in threat mitigation and risk program development. 

    Topics covered in this session include:  

    • A deep dive into the emerging use cases for AI in the healthcare setting
    • The risks related to AI that defenders need to be aware of and how real and relevant those risks are in the current state
    • Data Poisoning, Input Manipulation, Membership Reference & Model Inversion
    • AI-driven attacks and human security risks
    • Privacy concerns with the use of AI
    • New regulations coming online that directly affect the use of AI
    • Controls we should be considering for AI
    • Frameworks that already exist to help us understand the control options
    • And some practical tips on where to get started 
    Show more Show less
    57 mins
  • The CyberPHIx Roundup: Industry News & Trends, 5/8/23

    The CyberPHIx Roundup: Industry News & Trends, 5/8/23
    May 9 2023
    The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.  In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:  The Changes to HHS 405(d) HICP publication on the top 5 threats and top 10 security practices for healthcare  The NIST Cyber Security Framework 2.0 Discussion Draft   The riskiest connected medical devices and IoT (including nurse call, infusion pumps, and IP cameras)  Some free security awareness resources for clinicians from Health Sector Coordinating   Moody’s report on healthcare lagging behind other industries in implementing cybersecurity practices  OCR regulatory focus on pixel tracking technologies on HIPAA-Covered-Entity websites  Some fascinating numbers on the increase in lawsuits after breaches and ransomware payment averages  A new ally for security leaders in the Chief Supply Chain Officer (CSCO)  And Apple’s new Rapid Security Response updates for iOS, iPadOS, and macOS 
    Show more Show less
    44 mins
  • HITRUST v11 and Third-Party Risk: Insights from HITRUST Leadership

    HITRUST v11 and Third-Party Risk: Insights from HITRUST Leadership
    Apr 10 2023

    Join us for this episode of The CyberPHIx podcast where we hear from Ryan Patrick, Vice President of Adoption at HITRUST.  

    Ryan works with clients to understand and implement the HITRUST-validated assessments that best suit their organization’s risk profile. Prior to this role, he spent many years as a security practitioner and IT lead in a wide range of organizations from the US Army to Covered Entities to healthcare cybersecurity consulting firms. He has a wealth of practical security experience that informs every discussion about security or HITRUST.  

    Topics covered in this session include:  

    • The new HITRUST v11 and what it means for organizations who are considering the HITRUST journey
    • HITRUST’s traversable levels of assurance from e1 to i1 to r2
    • A newly created threat adaptive control selection process they use
    • How broken and unsustainable TPRM (Third Party Risk Management) is today
    • How HITRUST services fit into the third-party risk landscape
    • A discussion about the new Health Third Party Trust (H3PT) council and what that group is trying to do to solve TPRM
    • An invitation to meet either of us in person at HIMSS in Chicago April 17 – 21
    • And a cool update on HITRUST’s Results Distribution System (RDS) and the automation opportunities it will provide 
    Show more Show less
    46 mins

What listeners say about The CyberPHIx: Meditology Services Podcast

Average customer ratings

Reviews - Please select the tabs below to change the source of reviews.

Audible.com reviews

Amazon reviews
No Reviews are Available