Beth Israel Deaconess Medical Center CIO John Halamka blogs on risk planning and data sharing in wake of the Boston Marathon bombing.
Beth Israel Deaconess Medical Center was in the thick of events following this month's Boston Marathon bombing. BIDMC clinicians treated people injured in the bombing, and they treated the bombing suspects after police shootouts in the days following.
All that activity has BIDMC CIO John Halamka thinking -- and blogging to share his thoughts on what the hospital might need to do differently.
Read his blog post "Reflection on the Tragedy in Boston." What Halamka's doing shows what it really means to be a "social CIO." He's taking a risk by putting ideas out for reaction before they've been filtered through planning committees, and raising problems that aren't yet solved. He's sharing ideas right away, even as the city mourns and recovers, rather than in a month or two when doing so would be safer but also less relevant.
Halamka (whose team earned BIDMC the no. 1 ranking in the 2012 InformationWeek 500) raises five lessons learned -- mostly tough problems yet to be solved. I'll only briefly note them here (read the blog).
1. Risk planning is "forever altered." He had most of the people from one critical IT team volunteering at a relief tent close to the explosions. None of them was harmed, but it got him thinking about risks.
2. The hospital limits remote access for security reasons -- but what if Boston's "shelter in place" order -- which restricted local people from leaving their homes -- lasted for days?
3. Same issue with access to the data center: What if people couldn't enter or leave for days?
4. The hospital tracks every single record lookup. Should there be real-time alerting in such a crisis -- letting someone know if a record's being accessed that shouldn't be?
5. There's a clear need for a healthcare information exchange in such mass casualty situations.
This last point was Halamka's most definitive one -- and one he has devoted much of his career to solving. He and many Boston-area peers have worked for years to make slow, steady progress on the sharing of health data.
He noted that BIDMC, Massachusetts General, Brigham and Womens, and Children's Hospital all treated people injured in the bombing, and often did so with "incomplete medical information." He points to late 2014 as the target to complete a more complete medical record look-up and exchange system, which he says "would have been helpful" in treating the bombing victims.
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
IT Strategies to Conquer the CloudChances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.