VMware, Inc. has teamed up with Intel Health and Life Sciences to help global healthcare organizations better understand the current state of their security readiness. The complimentary program allows healthcare IT teams to gain valuable insight into their security postures for breach mitigation relative to other healthcare organizations, helping identify and implement solutions to further reduce risks.
As a participant in Intel’s Healthcare Security Readiness Program, VMware offers healthcare organizations a one-hour, complimentary, confidential engagement with a security assessor to measure their organization’s technical security priorities and safeguards using a unique healthcare security maturity model. To date the model has been used by more than 60 healthcare organizations across nine countries to create a baseline against which participating organizations can measure their technical readiness across 42 security capabilities. The model also looks at administrative controls such as policies, incident response plans and business continuity/disaster recovery capabilities.
“Today’s hackers operate as professional organizations, meaning they do a lot of planning and diligence before executing attacks. This means healthcare organizations must be equally proactive and thoughtful in how we assess the security of our organizations,” said Hussein Syed, chief information security officer at RWJBaranbas Health in New Jersey. “This healthcare security readiness program gives healthcare organizations access to a wealth of actionable information, at no cost, and with very little investment of time or resources.”
Participating healthcare organizations will receive a report summarizing the findings, including their maturity level, how they compare with the rest of the healthcare industry, any gaps in their security and a multi-year plan to improve their infrastructure and security preparedness. This report can also help organizations identify where addressing a gap may also help them achieve compliance with privacy and security regulations, data protection laws and standards specific to the healthcare industry. These include the Health Information Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS), and the General Data Protection Regulation (GDPR), among others.