Healthcare Cyber Security Symposium
Date: 23 August 2016
In February 2016, the Hollywood Presbyterian Medical Center was held ransom by hackers for USD$3.7 million.
The hospital ended up paying about USD$17,000 to restore their systems and administrative functions in order to operate effectively. The malicious software used - Ransomware - encrypted all sensitive patient and hospital data at the facility, making critical information inaccessible to staff members.
The scary reality is, this is just one case of many high-profile breaches in the healthcare sector in recent years.
In Asia Pacific, the "Cyber Five" Nations - South Korea, Australia, New Zealand, Japan and Singapore - are 9 times more vulnerable to cyberattack than other Asian economies (Source: Deloitte Touche Tomatsu Limited).
These developed economies and their rapidly developing neighbors including Thailand are improving critical healthcare infrastructure at an ever-more rapid pace. With that comes greater risk of infiltration, security and privacy issues at healthcare organizations. The massive complexities of information in the healthcare sector, coupled with the critical need for accuracy in treatment and saving lives makes healthcare cybersecurity a paramount issue in this sector.
The Healthcare Cyber Security Symposium at HIMSS AsiaPac16 is designed to help your healthcare organization prevent the loss of money, time and resources because of hackers and security breach. Most importantly, this Symposium will examine methods and technologies that will help you prevent incidents that threaten to compromise the quality and safety of your care delivery.
This Symposium will focus on these key areas:
- Best practice case studies on protecting your hospital systems and patient data
- Improving security protocols while keeping aligned to security regulations
- Examining the best technological applications for cohesive and secure healthcare environments
- New technologies are sparking cyber security concerns. How to make technologies work for you while safeguarding information in today's digital age
In this Symposium, we will bring together different perspectives- payers, providers and policy makers, and enable participants to hear from best practice case studies on cyber security in healthcare. We will then offer potential solutions and provide an overview of trends in healthcare cyber security with preventive measures to help you plan ahead for a secure future.
| | |  09:00 - 09:15 | Welcome by HIMSS | | 09:00 - 17:00 | | | 09:15 - 09:45 | Asia Pacific Cyber Security Threat Landscape - Challenges for Healthcare [More Info]
Mr. John Ellis, Chief Strategist, Cyber Security, Akamai Technologies, Asia Pacific & Japan
Asia is the
world’s fastest growing region in terms of people, technology, markets and
geopolitical tensions. Asia is also a hot spot for cybercriminal activity with
over 70% of the world online attack originating from networks in Asia. The
dilemma for many business leaders across all industries is how do they take
advantage of the information revolution at hand, while still protecting their
business from these cyber threats?
Of
particular concern to the healthcare industry is the increasing number of cyber-attacks
against their industry. The healthcare industry has become an increasingly
attractive target for cybercriminals with stolen healthcare data being more
valuable than credit card data on the ‘hacker underground’. With critical
information now residing in the cloud and accessed by a growing number of
devices and applications, web-based attacks have become increasingly pervasive.
The same forces that enable new efficiencies open healthcare providers up to
new vulnerabilities.
Join John
Ellis, as
he sheds light on the following topics:
·
Overview
of the cyber threat landscape in the Asia Pacific
region
·
The
growth of cyber-attacks on the healthcare industry
·
Challenges
in data protection in the every expanding and cloud connected world | | 09:45 - 09:50 | Session Transition | | 09:50 - 10:20 | The Current State of Cyber Security in Thailand and the Effect on Healthcare Organizations | | 10:20 - 10:50 | Tea Break | | 10:50 - 11:20 | A View from the Experts: Ransomware Best Practices and How to Ready Your Organization for the Next Significant Cyber Threat with Emergency Preparedness Exercises [More Info]
Mr. Arno Brok, Chief Executive Officer, Australian Information Security Association, Australia
Mr. Mohd Zabri Adil Bin Talib, Head, Digital Forensics Department, CyberSecurity Malaysia
Mr. Martijn van der Heide, CERT Specialist, ThaiCERT, Thailand
Moderator: Rod Piechowski, Senior Director, Health Information Systems, Healthcare Information and Management Systems Society (HIMSS), USA
- How to educate and inform your healthcare organization about ransomware
- Potential indicators of compromise for ransomware - How to keep up with all the ransomware strains
- Incident response, mitigation information, business continuity and disaster recovery information
- How to ensure your organization is ready for cyber attacks
| | 11:20 - 11:25 | Session Transition | | 11:25 - 11:55 | Building a Secure Framework for your Healthcare Environment [More Info]
Mr. Dale Johnstone, Chief Information Security Officer, Hospital Authority, Hong Kong
Ensuring security within a healthcare environment presents both common and unique challenges. Challenges include how to transmit and process electronic medical records, personal healthcare records, patient billing records, as well as public health alerts, across many parties with varying security, privacy and trust levels. Other challenges include the sheer volume of transactions and the physical size of the data being transmitted. This presentation will look at a common information security management framework that provides a balanced structured approach to reducing risk and increasing healthcare resiliency.
| | 11:55 - 12:55 | Lunch Networking | | 12:55 - 13:25 | Achieving Robust Cybersecurity: A Perspective from the CIOs [More Info]
Dr. Eric Wong, Group Chief Medical Informatics Officer, National Healthcare Group, Singapore
Mr. Veerasak Kritsanapraphan, Chief Technology and Innovation Officer, Greenline Synergy;, Deputy Chief Information Officer, Bangkok Hospital Medical Center, Thailand
Mr. Scott MacLean, Deputy Chief Information Officer, Partners Healthcare, USA
Moderator: Patricia Wise, Vice President, Health Information Systems, Healthcare Information and Management Systems Society (HIMSS), USA
- Healthcare CIO perspective on cybersecurity in the real world hospital environment
- Negligent and malicious insiders are a problem for all healthcare organizations
- How to detect and mitigate the insider threat before significant damage is done
| | 13:25 - 13:30 | Cyber Risk Insurance: Risk Assessment, What's There and What To Look Out For? [More Info]
Ms. Stella Tse, Managing Director, Marsh (Hong Kong) Limited, Hong Kong
- What's a Cyber Risk Insurance & How Can It Benefit Your Organization?
- How to Assess Risk Exposure?
- Type of Services an Insurance Coverage can Provide
| | 13:30 - 14:00 | | | 14:00 - 14:05 | | | 14:05 - 14:35 | Cloud Computing Top Threats [More Info]
Mr. Terence Siau, Director, Cloud Security Alliance, Co-Founder, TINDO Pte Ltd, Singapore | | 14:35 - 14:40 | Session Transition | | 14:40 - 15:10 | Cybersecurity and the Healthcare Supply Chain [More Info]
- Why it is important to vet your products and services
- How hardware/software can be compromised just out of the box (in the hands of the “end user”/purchaser)
| | 15:10 - 15:40 | Tea Break | | 15:40 - 16:10 | | | 16:10 - 16:15 | | | 16:15 - 16:45 | Closing Keynote: The Nexus and Future State of the Medical Internet of Things and Cybersecurity [More Info]
Mr. Mike Cunning, Managing Director, PwC Health Industries Cybersecurity & Privacy, USA
Medical devices are critical to the delivery of care in everyday medicine at hospitals and clinics across the world. These devices are becoming more and more connected to care provider business networks and/or the Internet and are utilized as a mechanism to measure patient outcomes. Innovation is accelerating in areas such as robotics, implantables, ingestibles and medical Internet of Things (IoT) as is amount of sensitive health information captured by these devices. Cybersecurity threats and risks are also rapidly evolving with threat actors innovating and exploiting vulnerabilities in the increasing attack surfaces of these connected devices. The impact of these trends can directly impact patient safety, the effectiveness of these devices to deliver care and the security of patient health information. In this keynote address, Mike Cunning, Managing Director at PricewaterhouseCoopers (PwC), will discuss the current state of Medical Device cybersecurity, and what your organizations can do to prepare and protect your medical IoT both now and into the future.
This session is sponsored by:
|
|
Patricia Wise
Vice President, Healthcare Information Systems
HIMSS |
Patricia B. Wise is Vice President of HIMSS, a global, cause-based, not-for-profit organization focused on better health through information technology (IT). HIMSS leads efforts to optimize health engagements and care outcomes using information technology.
At HIMSS, Wise is responsible for directing initiatives that drive the quality, efficiency, effectiveness and safety of patient care through various tools and resources. Specifically, she oversees committees and task forces including Ambulatory Information Systems, Enterprise Information Systems, Personal Health Record Information Systems, Financial Information Systems, Patient Safety and Quality Outcomes, Health Information Exchange, Electronic Health Record Association and the Davies Award Program. Wise works closely with the HIMSS Physician Community and Plug In! She joined HIMSS in 2002 as the Director of HIMSS EHR Initiatives and member of the HIMSS Industry Affairs Department and was promoted to her current position in 2005. |
|
Lee Kim
Director, Privacy and Security
HIMSS |
Lee Kim is the Director of Privacy and Security at the Healthcare Information and Management Systems Society (HIMSS) and a Fellow of HIMSS. Lee is a member of the National Association of State Chief Information Officers (NASCIO) Health Care Working Group and the SANS Securing the Human Healthcare advisory board.
Lee is a licensed attorney in the District of Columbia and Pennsylvania and is admitted to practice before the Federal Circuit and the United States Patent and Trademark Office as a registered patent attorney.
Lee holds an AV Preeminent® peer review rating in health care and intellectual property from Martindale-Hubbell. Kim’s publications have included articles in E-Commerce Law & Policy, E-Finance & Payments Law & Policy, and a chapter in the American Bar Association book, Health Care IT: The Essential Lawyer’s Guide to Health Care Information Technology and the Law.
Previously, Lee worked as a technologist in the healthcare and information technology industries and as a healthcare and intellectual property attorney in private practice.
|
|
