Healthcare // Security & Privacy
News
7/17/2014
07:06 AM
Alison Diana
Alison Diana
Slideshows
Connect Directly
RSS
E-Mail

Healthcare IT Cloud Safety: 5 Basics

Healthcare is warming up to cloud services, and that means extra vigilance. Here's what you should be doing at a minimum to keep data safe.
2 of 6

Take a headcount
Before an internal audit, one small hospital believed it had about 20 cloud services in use. After the audit, it knew employees were using about 200 cloud services, says Kamal Shah, vice president of products at Skyhigh Networks, in an interview. 'When IT looked at the list they found there were many [apps] they had never heard of before,' he says. 
When employees download cloud-based apps for file sharing, storage, collaboration, and other functions, IT should review employees' favorite apps and consider whether any meet the department's security and other criteria, he says. If so, the organization can standardize on these apps, educate employees about their availability, and encourage their use, he says. 
'By doing that you're consolidating services, making available services that are in demand, and you're putting the necessary controls in place to comply with your regulatory, security, and compliance needs,' says Shah.
(Image: Skyhigh Networks)
Before an internal audit, one small hospital believed it had about 20 cloud services in use. After the audit, it knew employees were using about 200 cloud services, says Kamal Shah, vice president of products at Skyhigh Networks, in an interview. "When IT looked at the list they found there were many [apps] they had never heard of before," he says.
When employees download cloud-based apps for file sharing, storage, collaboration, and other functions, IT should review employees' favorite apps and consider whether any meet the department's security and other criteria, he says. If so, the organization can standardize on these apps, educate employees about their availability, and encourage their use, he says.
"By doing that you're consolidating services, making available services that are in demand, and you're putting the necessary controls in place to comply with your regulatory, security, and compliance needs," says Shah.
(Image: Skyhigh Networks)

2 of 6
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Alison_Diana
100%
0%
Alison_Diana,
User Rank: Author
7/22/2014 | 3:33:48 PM
Re: HIPAA is key!
HIPAA is vital because, in healthcare, you truly are responsible for your partners' behavior - or lack, thereof. If a business associate's security is breached, then the healthcare system is both at risk and responsible. In some cases, depending on location (such as Florida), it may have to notify patients and law enforcement about the breach. So you want to ensure cloud service providers meet stringent criteria and HIPAA's a good place to start.
KtAt
50%
50%
KtAt,
User Rank: Apprentice
7/17/2014 | 5:52:35 PM
HIPAA is key!
This part of the atricle is great:

 

"When using cloud services, healthcare organizations must be certain that providers meet HIPAA regulations, said Jennifer Christianson, a partner in the law firm Carlton Fields Jorden Burt, in an interview."

 

Luckiy now a days there are many services out that that have become HIPAA certfied to help healthcare practitioners. Here at SurveyMonkey we offer a completely HIPAA compliant platform. THis is incredibly useful for professionals that are gathering medical research, patient intakes etc. Many companies are jumping onboard including Verizon and Amazon. It's absolutely crucial that we are able to provide these services to the healthcare industry so they may achieve their goals! 
Healthcare Data Breaches Cost More Than You Think
Healthcare Data Breaches Cost More Than You Think
Healthcare providers just don't get it. They refuse to see the need to fully secure their protected health information from unauthorized users -- and from authorized users who abuse their access privileges. As a result, they don't allocate enough budgetary resources for securing medical data.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest - August 20, 2014
CIOs need people who know the ins and outs of cloud software stacks and security, and, most of all, can break through cultural resistance.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.