The EU General Data Protection Regulation (EU GDPR) is expected to come into effect in 2017. This means that in less than 2 years’ time, you need to have a data protection officer, a strict plan in place to notify all of your customers about breaches as soon as they happen, all of your data must be encrypted and your company must have an insurance plan to help guard against data fines. Sounding like a fast approaching deadline to make some pretty drastic changes, doesn’t it?
Today’s healthcare organizations are under pressure to increase the affordability, quality and efficiency of patient care, all while streamlining costs and staying compliant with ever-changing regulatory legislation. Those demands alone are enough to strain resources to the breaking point. However, recent studies show that protecting patient information is one of the biggest challenges that modern health practices face.
PwC recently conducted a survey of organizations in the UK about cyber security incidents. In the 2015 Information Security Breaches Survey, commissioned by the Department for Business, Innovation and Skills (BIS), it’s clear that security breaches continue to rise and also that the average cost per breach is rising even more quickly.
There is a direct correlation between how quickly an organization can identify and contain a data breach and the financial consequences that may result. Is your organization prepared to act quickly to mitigate the damage and to meet compliance regulations?
The National Journal recently put together a timeline of government data breaches that looks specifically into the OPM data breaches and how they all tied together. In particular, it paints a picture of the importance of taking contractor data breaches more seriously.
2015 has been called the “Year of the Healthcare Data Breach,” and the year is only half over. The average cost of a data breach in healthcare is $5.9 million, higher than in any other industry. The 2015 HIMSS Cybersecurity Survey recently revealed that 68% of healthcare organizations experienced a significant security incident in the past year. Cybersecurity was identified as an increased priority in 87% of organizations, as cyber attacks become more common.
US Homeland Security Secretary Jeh Johnson recently spoke at a conference at the Center for Strategic and International Studies (CSIS) about the challenges of cybersecurity as they affect the federal civilian .gov world. In his speech, secretary Johnson stressed the importance of passing new cybersecurity legislation to improve data sharing when breaches occur. Indeed, his speech would go one step further to incentivize organizations to report non-breach security incidents.
The US Office of Personnel Management (OPM) recently released details about two cybersecurity incidents that impacted the data of Federal employees, contractors and others. In April 2015, it was discovered that the security incident led to the breach of 4.2 million current and former employees. While investigating this incident, it was discovered the breach was larger than originally thought.