There’s a lot of buzz in the marketplace these days around SIEM, which is Security Information and Event Management. I’ve had people tell me that their SIEM technology isn’t of much use, and others tell me that it’s critical to their business’s everyday security posture. The vast difference between those two is usually the same thing, which is how the related tools are deployed, and what the staff around them looks like.In a mature security posture, SIEM is only one component of a much broader acronym. While we do employ SIEM for many of our customers, it’s actually a small piece of a term called Managed Detection and Response (MDR). Our team of security analysts provides these real-time MDR services to our customers. But, little known to most, they actually provide MDR for our own organization as well. We call it “eating our own dogfood.”
As a security consultant, I’ve been in a lot of hospitals, clinics and practices—and I’ve seen a lot of “worry” over the cybersecurity threat landscape. I’d like to see more of this worry translate into action, because it’s just not happening.Other than worry, what can healthcare institutions and their IT/IS leaders do to protect electronic personal health information (ePHI)? I have been part of three major healthcare breaches and post-breach forensics revealed that two of them could have been limited in scope if they had been actively monitoring and alerting to changes inside their IT networks.
We use cookies to better understand how you use our website, which allows us to provide you with the best possible user experience. By continuing to use our site, you accept our use of cookies. Read more about our Privacy Policy.Accept
