Is your network secure right now? Have any of your PCs or mobile devices been compromised? Before you even attempt to answer these questions, you need to pause and ask yourself: Can you actually answer either of these questions with any degree of certainty? Think hard about that one—because your job may depend on it.
The rising movement of audit and regulatory screening of financial institutions – which was triggered by global financial crisis in the past – has now reached beyond insurance companies, commercial banks and investment trusts. The tide of major bank agencies (Office of the Comptroller of the Currency, Consumer Financial Protection Bureau, Federal Deposit Insurance Corp. and Federal Reserve) have required banks to increase the oversight of vendors which are deemed crucial to their operations.
Prior to the Health Insurance Portability and Accountability Act (HIPAA) being enacted in August 1996, no widely accepted set of security standards for protecting healthcare information existed. About same time, the Internet was exploding, and the healthcare industry began to move away from paper-based operations, towards a heavy use of electronic data systems.
The Need for Penetration Testing HIPAA Security Controls
In 2015, Healthcare providers became the leading industry of data breaches. As healthcare continues its evolution to a digital, on-demand data-driven service, the industry will continue to see increased pressures to protect patient data. The Health Insurance Portability and Accountability Act (HIPAA) serves as the backbone of regulation in this space. Like most regulations there are gaps in the language and a proper defense posture isn’t detailed.
Trends to Guide Your IT Risk Management Roadmap
Symantec has published their 20th Internet Security Threat Report , it’s a summary of the threat landscape over the previous 12 months, highlighting trends in vulnerabilities, breaches, and cybercrime. Additionally, new areas of focus for information security leaders and business executives are highlighted to raise awareness for the next year. You can get more details on the report and a copy of the full report here. This is an excellent report, and one that I highly recommend you take a few moments to review. Trends that stood out to me within the report include: