Security professionals from healthcare delivery organizations (HDOs), medical device manufacturers, and pharmaceutical companies gathered in Scottsdale, Arizona for the NH-ISAC Cyber Rodeo Summit last month. The big topics were how to share more threat intelligence, while at the same time ensuring the highest level of patient care and safety.
Having attended the past four NH-ISAC biannual summits, I’m always pleasantly surprised at the close-knit circle of members as they share best practices and valuable threat mitigation strategies collectively, reducing the risk of potential attacks. Add to that the attendance of key health government agency leaders from the HHS and FDA who provide the latest information on regulatory and legislative affairs, and you get a week-long roundup of the best and the brightest.
The most popular sessions were like a stampede just to get a seat to hear panels of experts talking about topics from successful multi-factor authentication roll-outs to challenges with getting C-suite and board-level attention on security issues.
The keynote was delivered by Dr. Zubin Damania (alias ZDogg, MD) – a physician turned hip-hop rapper, who put his message to music with an entertaining medley of songs coupled with observations about the changing landscape of patient care – known as Healthcare 3.0. If we could hitch our security programs to the high energy level that Dr. Damania demonstrated, we’d have a huge head start in 2018.
Coalfire hosted a group of friends and clients for an evening of golf, dinner, and drinks at Top Golf where a good time was had by all. Luke McOmie, Director at Coalfire Labs, packed a standing-room-only session on how medical device manufacturers can use penetration testing to mature their product lifecycle processes. Other popular sessions covered Internet of Things (IoT), blockchain, Artificial Intelligence (AI), and machine learning . . . technologies that bring new challenges and security ramifications to the healthcare industry.
The exhibit floor was an open range of 45+ security technology providers, many of whom were Coalfire clients, using their third-party technical assessment white papers (authored by Coalfire assessors) to promote their secure solutions. From end-point security products to SIEM and encryption solutions, HDOs and life sciences organizations were part of a cattle drive to get more information from exhibitors.
As the conference wrapped up on the final evening with a bronco-bustin’ soiree at Copper Canyon, where serious discussions around third-party risk, malware detection, and ransomware took place, it was clear that attendees were armed with new ways to combat threats and manage risk in 2018 (as well as armed with rifles as they dressed in western wear for photo opps).
In all, NH-ISAC was more than just a rip-roaring good time peppered with a hint of western flavor, but also a very informative event rife with the latest information in cybersecurity advancements, best practices, and latest developments pertinent to healthcare.