The journey continues

What better time than year end to reflect on our collective progress as an IT team. You will see a lot of “top 10” type stories in December – top trends, breakthroughs, stories, and even top predictions for the coming year. I’ll leave those to people with far more time to research and write. What I’d like to share is the progress my incredible IT team has made in partnership with our many internal customers at UMHS in 2015. These are common journeys for health care CIOs around the country. Continue reading

Creating a security culture

I wrote recently that if the CIO is the only one worrying about the EHR implementation, it’s a problem. Likewise, if the CIO and the Chief Information Security Officer (CISO) are the only ones thinking about IT security, it’s a problem.  You only have to read the news any given week to see the rising number of breaches within health care – the recent Anthem breach being the biggest to date with over 80 million records involved.  And there is a new breach we are all hearing about as of this week – Premera Blue Cross potentially involving financial and medical records of up to 11 million customers.

IT security is a common topic amongst health care CIOs these days. We are continually trying to learn from one another and share best practices.

I recently had a third party IT security assessment done for our health system in order to identify key gaps and get recommendations to strengthen our IT security program. One of the best pieces in the final report was about creating a security culture. So what’s a security culture?

Signs an organization has developed a security culture include the following: Continue reading