Cyber Security in Healthcare.

It is commonly understood that the recent UK hacking situation in the NHS, was via its connected machinery, rather than direct into the hospital servers. We focus on what’s up at the forthcoming conference in San Francisco, with this  timely announcement from Tel Aviv based company Cynerio, who today announced its mission to protect the future of healthcare by focusing on its weakest link – the connected medical device ecosystem.

What they say is, by building a tailor-made solution for healthcare providers, they deliver  complete visibility into a healthcare organization’s medical device ecosystem, protecting it from cyber threats and helping the organization meet HIPAA regulatory requirements.

The company was founded by cybersecurity experts Leon Lerman, CEO, and Daniel Brodie, CTO, to deliver a cybersecurity solution specially designed for healthcare providers, based on the industry’s first technology that combines device behavior modeling with medical workflow analysis to provide full visibility into medical device behavior and activity on the network, accurately detect anomalies with deep understanding of the medical context and stop the threat to ensure patient safety and data protection.

“Connected medical devices are delivering a new level of patient care, but present new challenges of managing and securing the growing clinical ecosystem. For attackers, medical devices are easy targets, as the devices aren’t built with security in mind and healthcare security teams have limited ability to protect these devices with traditional IT security solutions that are more focused on standard platforms. Our technology offers a comprehensive solution, purposely built to protect the medical device ecosystem and their sensitive data,” explained Lerman.

Cybersecurity again in the News…

We look briefly at two companies that have got in touch…

Fortified Health Security have recently recently partnered with Beacon Health System to strengthen the health system’s overarching cybersecurity program. Their Kristin Deuber writes to us to say:

“The program kicked off in April 2017, during the formation of Beacon, which required the health system to consolidate policies and to implement a more unified and centralized cybersecurity program. Fortified discovered through its baseline research that the health system had moderate cybersecurity system development with data loss prevention, and had deployed a SIEM solution on limited systems. In addition, like most healthcare organizations today, there was zero SIEM visibility into their medical device inventory, as well as the risks associated with those connected devices.”  She attached some deeper info, which is available on demand from us here at ProfoMedia. And we have invited their President, Dan Dodson,  to write a guest article – so watch this space.

Also out of the blue, is the Proficio company, whose Tamara Yaravoy says that they have won some eleven Cybersecurity Excellence Awards. This is clearly better than my 200 mtrs  swimming certificate when I was a kid.  She goes on to explain in more detail:

“In the Cybersecurity Excellence Awards, Proficio won gold in the Best Managed Security Services and Cybersecurity Team of the Year – North America categories. The company was also recognized with a bronze award in the Best Cybersecurity Company category, where they had competed against forty other cybersecurity companies.

Proficio secured top honors in the Info Security PG’s Global Excellence Awards, placing in four different categories. The company won gold in the Cyber Security Vendor Achievement of the Year category for significantly expanding its operations in North America, EMEA, and APAC, silver for Best Security Company of the Year (Services), bronze in the Best Overall Security Company of the Year category, silver in the Managed Security Services category for its SOC-as-a-Service offering, and bronze in the Managed Security Services category for its Splunk Enterprise and Splunk Enterprise Security services. Proficio was the only cybersecurity company to be recognized with two awards in the Managed Security Services category.

In the Cloud Computing Excellence Awards, Proficio was recognized for excellence and innovation in their SOC-as-a-Service offering. Proficio was one of only nine companies selected for this award which honors vendors that have most effectively leveraged cloud computing in their efforts to bring new, differentiated offerings to market.

Proficio was once again awarded a placement on the Security 100 of CRN’s 2018 MSP 500 list as well as San Diego Business Journal’s Top Cybersecurity Organization List. The CRN Security 100 list is designed to help partners wade through the ever-expanding security market, from the long-standing legacy vendors to the niche players, and navigate the fast-growing security vendor market.”

Cyber security in healthcare,  is expected to be the target of choice for those malovelences trying to destabilise how our services work. Last year’s attacks on UK hospitals showed the issues of Windows XP reliance, and that was just a baseline start.

You can look back at our earlier pages on other cyber vendors. Do contact these and the above vendors as this topic will become more visible as the year goes on.

FUTURE OF FINANCE 2018 CONFERENCE

We take a look at the latest IQPC Conference formula and ask – does it work for us?

The man opens the inner door as I and my two colleagues from Portugal – who I have never met before- enter from the outside courtyard.

He is dressed in a Polo shirt, and a bath towel. He has no trousers, and his hair is damp. He has some soft leather sneakers on.

“Are you lost?

Yes of course we are. It is a ten minute walk from the Putney Bridge tube station, past the security barrier and through the immaculate lawns of the Hurlingham Club, and the arboressence of pathways. We are trying to find the Conference.

“Then let me show you a shortcut”.

The man beckons us through, we enter a further courtyard, the man slides into a black 4×4 and we walk up the stone steps into a modern but eloquent glass atrium, which is indeed – where the Conference is.

The Hurlingham Club is as distant as it needs to be. This is no typical Conference mingling among the tourists who are checking out of whatever four star hotel they have found in the city. This is a venue for serious players. The 100 or so Delegates who have found their way here, a sort of crystal maze if you will – are all serious players. Large corporates do not send their key financial execs to this sort of Conference unless they can deliver, and can feel at home on this global stage fo financial business decision makers.

The Future of Finance Conference is three days long. It is a Management Conference, not a Tech event. Sure, the topics discussed inevitably contain technology, but this is no GDPR Roadshow. Life has already moved on. The focus is as much about corporate vision than AI and Robotics. Typically, the 40 minute sessions – and there are many and varied and you pick and choose the ones that work for you etc – focus on Transformation – how to bring your team with you, establishing a culture of improvement – and inevitably, something about Brexit. I could go on. And in between, people mingle and chat in the frequent coffee breaks. Everybody shares anecdotes and business cards.

I had long gone by that time. But it establishes a central truth, that the value in IQPC Conferences is as much in the informal networking amongst peers, as in the more formalised presentations.

My colleagues from Portugal are taking a quick cigarette outside the exit as I make my own way back to the exit. They give a cheerful wave – “see you in Lisbon?” It turns out we both used to work for the same company. The next IQPC Conference will be in Lisbon, and I have been invited.

Will I come?

You bet!!

FORGET ACCREDITATION. LETS TALK ABOUT RISK MANAGEMENT

We talk with the EHNAC Executive Director, Lee Barrett, and ask – why now their time has come.

You could say it’s not what you say – it’s how you say it. You could argue that everything about EHNAC is a contradiction, a misnomer.

The image of silver-haired Lee Barrett as he sits back in his university-like Office, gently guiding me into his world – where he has been active for more years than I have fingers and toes – belies the relevance of EHNAC in the current medical world stage.

And that’s the problem. Or to put it another way in marketing-speak – maybe it is the “opportunity”.

EHNAC is a nationwide accreditation process for healthcare players. Up to now, and since its origins in 1993 – its focus has been to give you and I a framework, if you will, a set of guidance, that says you have passed the test – whatever that may mean. You would be forgiven to think that this is akin to taking your driving licence; you get the magic certificate, the nod from the examiner and off you go.

And this approach misses the point. Because EHNAC have moved on. To understand its importance, is to recognise that in getting accredited for your internal and external processes – you are protecting your entire business against the risk of the unforeseen. By complying with industry standards, you are mitigating your exposure to malevolence or just pure chance of things going wrong. A tick in the box from EHNAC means that your processes are reasonable and acceptable.

It’s not like the Assessors at EHNAC don’t have the know how to guide you. The academic atmosphere of Lee’s office gives rise to years of practical experience, across some of the key issues of modern healthcare, which EHNAC imparts to its accredited organisations as part of the deal.

EHNAC is currently active across all of the USA – and mandated in New Jersey, Maryland, and Texas, Compliance with individual State legislation is not a quick process at a government level. But it can be an immediate step at the individual vendor level.

In the litigious world we live in, never has Risk Management become so important. Lee’s parting words to me were:

“We are agnostic; our years of experience has taught us how to deliver standards that give a meaningful structure for each of our varied accredited organisations. What they actually do – is not important. It is how they do it”.

Lee can be contacted at HIMSS in his meetings onsite.

HIMSS 2018 – What to Look Out For…

As usual, we are pleased to do our annual Advance Report on those Announcements that have caught our attention.

Best among many, are Dave Anderson, and Stephanie Fraser, – who have made respective polite efforts to reach out to us on behalf of their respective clients EHNAC, and  GDPR people Nextgate, and Moran Faibish and her very interesting Healthwatchtech company. But there are dozens of others, and here are just a few:

• Influence Health’s CEO, Rupen Patel and CHRISTUS Health’s VP of marketing, Preston Gee, will also be presenting on 3/7 @ 11:30 am in Palazzo B (ID: 140) – A New Era: The CMO’s Role at the Healthcare Consumerism Table. Both executives are available to address how the consumerization of healthcare is fundamentally changing the way healthcare organizations need to market themselves by creating Amazon-like experiences for patients, or risk losing market share.

• Greenway Health, which recently earned the highest KLAS rating for Ambulatory Revenue Cycle Management Services, Small Clinics, will be announcing its next phase of Project Polaris, a next-generation practice management and EHR platform that will combine the best attributes from all of the company’s market-driven solutions to help providers effectively leverage a value-based healthcare environment for greater success.

Peter Hesse, 10Pearls’ CSO, will be presenting Magnetic PX: Building Secure, Engaging Experience, and would be happy to chat about the importance of security in providing patient experiences. He can also discuss how healthcare companies will need to adjust to meet HIPPA requirements as they implement emerging technologies such as AI and ML.

Ghazanfar Ghori, 10Pearls’ CTO, will be attending the event and available to discuss the solutions that his team has developed for their healthcare clients, such as HIPAA-compliant telehealth solutions that deliver care to patients in rural areas, online communities that connect caregivers to resources, and voice enabled AI applications capable of detecting dementia.

You can also arrange a meeting with data management provider Commvault’s General Manager of Worldwide Healthcare Business, Ananth Balasubramanian while at the show.

Ananth is available during the conference and can discuss, but not limited to:
·         What HIT executives must know about GDPR ahead of May’s deadline, and how they can become compliant
·         What HIT executives must know about ransomware, and how they can protect their organization and patients from increasingly savvy hackers
·         What HIT executives should know if they are considering migrating data to the cloud, and how to most strategically plan this (multi-cloud vs. public vs. private)
·         How healthcare entities can prepare and future-proof amid looming uncertainty as the administration deliberates how to make changes to healthcare reforms
·         Amazon / JP Morgan and Berkshire Hathaway’s new healthcare behemoth, and what it could potentially mean for the broader industry
·         How Commvault’s customers, such as Prime Healthcare and Montgomery County Memorial Hospital (and their patients) are benefitting from stronger, more secure data protection, recovery, backup and management in the cloud and on-premises.

David Dimond, CTO, and Dan Trott, Healthcare Field Director, Dell EMC Healthcare and Life Sciences, will also be there:

David and Dan will be onsite to discuss:
• Embracing a Digital Future and a supporting study commissioned by Dell EMC with Vanson Bourne Research
• Electronic Medical Record (EMR) adoption
• Changes in the healthcare technology landscape and high-profile mergers
• Leveraging multi-cloud environments

Dell EMC executives will be available to host industry discussions, providing perspective on these themes and how they support digital transformation in an ever-changing healthcare field. Along with these discussions, Dell EMC will host a number of interactive technology experiences, social media activities and customer events.

Courtney Cohen writes to say that; AI and natural language processing is starting to make waves in the healthcare space and Health Fidelity, industry leaders in providing scalable risk adjustment solutions, is bringing the technology to providers to use in a way like never before, such as discovering chronic conditions.

Why not come to meet with the Health Fidelity company, to discuss the advances NLP is making, as well as their recent partnership with Mount Sinai.

And then there are nice and polite invites; Amy Dardinger writes; The past few years, interoperability and AI have been the biggest trending topics at HIMSS. Many organizations are starting to get their systems in order, collecting more data points every day. This makes it even more difficult to synthesize the information to make it accessible and meaningful for healthcare providers.

Would you be interested in speaking with Gary Palgon, VP Healthcare and Life Science Solutions at Liaison Technologies, at HIMSS about the complexities of data integration in healthcare?

We invite any of our Readers to makle direct contact with any of the above vendors.  We are simply passing on what they themselves are saying, without obligation or endorsement – They have taken their trouble to write to us.  But equally there are dozens more. We will be producing our annual Report of HIMSS, towards the end of March 2018, but please contact us if you are looking for any specific health tech, and we will be pleased to point you where possible in the right direction.

 

 

`Cebit 2018 and the Public Sector

If you work in the public sector, in particular local and regional government – here is why you need a quick day in Hannover this Spring.

We republish here the announcement just a few days ago, from Cebit Press Office – detailing their focus on German public authorities, and the need for Digital platforms.

https://www.cebit.de/en/press/press-releases/article_7936

Cebit is exhausting at best of times, but focussing on public need, is great if you are a vendor of Data Analysis and GDPR solutions;  and very helpful if you work in the public sector and wish to engage with like minds.

 

Top 5 Ways Your Smart Home Can Help You Protect the Elderly

IoT has its downsides, ( see our article about hacking earlier) – but  at a time when we are banging on about personalised and community healthcare, here like a ray of sunlight, comes some essential truth, by Rafi Zauer, Head of Marketing at appropriately, the Essence company.

The ‘sandwich generation’—adults who have to simultaneously take care of their aging parents and deal with other responsibilities like work and raising their own children– is a consequence of increasing life expectancy in developed countries, and the wish of the elderly to stay independent and continue to live in their own home.

This can be a very stressful situation, and for those who find themselves in this position, every bit of help is more than welcome. And technology may be able to assist. A modern smart home will become an invaluable tool to help you take care of your aging loved ones. How? Here are five tips:

1. Be alerted about deviations from their daily routine
By installing motion sensors in strategic places around the house, you will know at what time your parents get up, or if they opened the fridge to get something to eat. You will be able to follow their daily routine and detect if anything is amiss. For example, you will receive an alert if they stayed in bed, or in the bathroom, much longer than usual. That way, you will be able to check on them and make sure they are well, without interfering with their daily habits, respecting their privacy at all times.

2. Make sure they aren’t wandering out of the house
Thanks to a smart lock you will be notified every time they enter and leave the house. This is not about spying on their every move, but about making sure they are safe. This is especially useful for seniors who are becoming increasingly frail or infirm, as well as for those in the early stages of dementia, for whom it may be dangerous to leave the house on their own. Also, with a smart lock you can even lock and unlock the door for them. For example, if they tend to forget to lock the front door at night, you can set a rule to lock it automatically at a specific time every night.

 

3. Keep track of their medication schedule
By installing a magnetic door sensor on the medicine cabinet door, you will know if your senior parent remembered to take his daily pills. By consulting the activity log from your smartphone app, you will be able to check if the cabinet was opened and when. What’s more, thanks to smart rules you can get creative with the way you remind them to take their medicines! For example, you can set the smart light in the kitchen to turn a different color when it’s time for the night pills, and not to return to its original color until the sensor in the medicine cabinet detects the door opening.

4. Ensure they are safe with smart safety sensors
Smoke, CO2 and water detectors will add an extra safety measure which could even become a life-saver in certain situations. Suppose your elderly parent forgets to turn the stove off while cooking or heating food up, and something starts to burn. You will receive an immediate alert on your smartphone, allowing you to react on the spot and prevent any serious damage. Likewise, with a smart thermostat you’ll be able to make sure the house is never too hot or too cold. This is not only a matter of comfort and convenience, as seniors are very sensitive to temperature changes, so on cold winter days forgetting to turn on the heat could put their health at health .

 

5. Use cameras to keep them safe while ensuring their privacy
Although some people may find it intrusive to have a connected camera in their home, there is no doubt that it is a very useful tool to take care of seniors as it allows you to check in on them at real time. For example, you can create a rule for the camera to send real-time video when any of the sensors detects an anomaly in the house, such as smoke in the kitchen. Also, if you can’t get in touch with your parents, you can turn on the camera and make sure they are well and haven’t perhaps fallen and are unable to answer the phone.

Beyond panic buttons, smart home technology is also useful in providing a helping hand for those taking care of seniors. It does not only offer peace of mind for everyone involved, both the caregiver and the elderly person, but can also become a life-saver in situations when time becomes a life or death matter, such as in the case of a fall, injury or accident, where a quick response is essential. Smart homes are helping enhance the quality of life both for seniors and caregivers, helping seniors remain at home and stay independent for as long as possible.

Rafi Zauer is Head of Marketing at Essence, providers of intelligent end-to-end IoT platforms for service providers offering home security, automation and senior care services. http://www.essence-grp.com