CIOReview
CIOREVIEW >> Compliance >>

Maintaining A High Level Of Security And Privacy

Ken Resmini, Chief Compliance and Internal Audit Officer, Memorial Healthcare System
Ken Resmini, Chief Compliance and Internal Audit Officer, Memorial Healthcare System

Ken Resmini, Chief Compliance and Internal Audit Officer, Memorial Healthcare System

Emerging challenges in compliance
The big challenge in technology in the healthcare arena is maintaining a high level of security and privacy with the large number of systems we use. It is not uncommon, particularly in large health systems, to have hundreds of systems in use, all constantly changing and new vulnerabilities developing with each change. Additionally, many of the medical devices used at the bedside, e.g., infusion pumps, bedside monitors, etc., are sophisticated systems that store, process or transmit Electronic Protected Health Information often wirelessly.

"Big challenge in technology in the healthcare arena is maintaining a high level of security and privacy with the large number of systems we use"

To help keep a grip on these challenges, we use an international risk and advisory services fi rm to continuously test our systems. They perform penetration tests, vulnerability scans, access assessments, sensitive data reviews, mobile device reviews and many other tests to identify weaknesses before they can be compromised. We then work with our IT department and their vendors to ensure that timely changes can be made and risk mitigation controls are implemented. That critical link is in Memorial’s philosophy that we are a team positioned to deliver smarter healthcare.

Read Also

Looking Closer At Compliance In Healthcare

Looking Closer At Compliance In Healthcare

William Gedman , Vice President, Quality Audit, Fraud & Abuse, Chief Compliance Officer, UPMC Health Plan
test

test

Jonathan Lister, VP, LinkedIn's North American Sales
The Intersection of Privacy and IT

The Intersection of Privacy and IT

Dana Louise Simberkoff, JD, CIPP/US, Chief Compliance and Risk Officer, AvePoint
Stay Connected with Your Stakeholders

Stay Connected with Your Stakeholders

Matt Lepore, SVP, General Counsel & CCO, BASF Corporation
Essential to Recognize  Traditional and Non-traditional  Regulations

Essential to Recognize Traditional and Non-traditional Regulations

John D. Rhea, Compliance Officer & Attorney, OGE Energy
Regulatory Scrutiny of  Business: Unavoidable

Regulatory Scrutiny of Business: Unavoidable

Mabel Wilson, CCO, Blackhawk Network