Safeguarding Cloud and Mobile Healthcare Data
•Download as PPTX, PDF•
1 like•580 views
This document summarizes a webinar about securing cloud and mobile healthcare data. It discusses trends in healthcare data breaches, including a 900% increase in breaches year-over-year. Large breaches in 2015 compromised over 96% of records, with one Anthem breach alone affecting 78.8 million records. The "anatomy" of breaches is examined through two case studies. Issues addressed include rising cloud adoption, BYOD security challenges, and the need for improved security capabilities like data-centric protection, mobile management, and identity control. The document promotes the Cloud Access Security Broker approach for capabilities like discovery, security, and identity management to address these issues. Two case studies describe healthcare organizations using this approach for H
Recommended
More Related Content
What's hot
What's hot (20)
Viewers also liked
Viewers also liked (14)
Similar to Safeguarding Cloud and Mobile Healthcare Data
Similar to Safeguarding Cloud and Mobile Healthcare Data (20)
More from Bitglass
More from Bitglass (20)
Recently uploaded
Recently uploaded (20)
Safeguarding Cloud and Mobile Healthcare Data
- 1. webinar feb 16 2016 safeguarding cloud + mobile healthcare data
- 2. agenda: ■ breach trends ■ anatomy of a breach ■ security challenges ■ the casb approach to security ■ case studies
- 3. poll: what do you see as the biggest threats to healthcare data?
- 4. healthcare breaches have skyrocketed: up 900% year over year individuals affected breach type 2014 2015
- 5. large-scale breaches rampant in 2015: top 6 breaches accounted for 96.6% of breached records ■ anthem alone accounted for 78.8m lost records ■ 11m records lost in premera breach ■ in 2014, largest breach affected 1m
- 6. the anatomy of a breach: premera blue cross / anthem blue cross HR 1. May 2014 - spoofed sites, prennera.com, we11point.com 3. Employee login with corporate credentials 2. Spear phishing emails 4. Corporate creds 5. Log into Premera, Anthem 5. Query + steal 11M identities Jan/Feb 2015 IT discovers breach
- 7. 8% of healthcare orgs had cloud apps deployed in 2014 37% of healthcare orgs had cloud apps deployed in 2015 cloud adoption is rising fast 5.2% of healthcare orgs use single sign-on Bitglass Cloud Adoption Report
- 8. 57% of employees refuse MDM/MAM for BYOD 38% of IT professionals don’t participate in their own BYOD programs employees are resisting “big brother” Bitglass BYOD Security Survey 2015
- 9. poll: what capability do you most need in a security solution?
- 11. CASB: a better approach to cloud security identity discovery data-centric security mobile
- 12. casb discovery: gain visibility into your org’s cloud usage ■ analyze outbound data flows to learn what SaaS apps your organization is using ■ understand risk profiles of different apps ■ essential in process of enabling secure cloud app usage
- 13. casb security: a data-centric approach the new data reality requires a new security architecture ■ cross-device, cross-platform agentless data protection ■ granular DLP for data at rest and in motion ■ contextual access control ■ detailed logging for compliance and audit
- 14. agentless byod security: achieve compliance and drive adoption ■ secure devices without invasive profiles or certificates ■ solve the multiple affiliations problem ■ device and OS independent ■ selectively wipe corporate data ■ enforce device security policies ■ full data control and visibility for IT
- 15. casb identity: centralized identity management is key in securing data ■ cloud app identity management should maintain the best practices of on-prem identity ■ SSO enables cross-app visibility into suspicious access activity ■ contextual multi-factor authentication mitigates risk
- 16. needs: ■ ensure security of PHI in Google Apps and on BYOD ■ maintain HIPAA compliance key features: ■ DLP ■ visibility / audit ■ identity management ■ mobile data protection bay cove human services ■ 2500+ employees ■ 160 locations ■ northeastern US
- 17. situation: ■ existing solution, AT&T Toggle, obsolete needs: ■ respect user privacy ■ support future O365 migration ■ HIPAA compliance key features: ■ DLP policies applied to PHI ■ selective wipe, enforce device PIN and encryption US hospital system ■ 2500+ employees ■ 160 locations ■ northeastern US ■ 7000 employees ■ southeastern US
- 18. resources: more info about byod ■ healthcare breach report ■ bay cove human services: case study ■ ESG Lab product review
- 19. download the full healthcare breach report in 2015 one in three Americans were victims of healthcare data breaches due to hacking download the report
Editor's Notes
- What do you see as the biggest threats to healthcare data? Phished employee credentials Lost or stolen devices Unauthorized access from employees Brute-force attacks
- What do you see as the biggest threats to healthcare data? Phished employee credentials Lost or stolen devices Unauthorized access from employees Brute-force attacks
- BYOD has long been a part of IT in higher education Most universities have migrated to a cloud app such as Google Apps or O365 in the last year 23% of institutions had cloud apps deployed in 2014. 83% of institutions had cloud apps deployed by 2015. Only 20% of institutions use single sign-on Needs of universities: Secure unsanctioned apps like Dropbox and Box, widely used but unsecured. Secure other cloud apps. Provide DLP, not native to solutions like Dropbox. Control access from BYOD.
- Users are actively pushing against invasive tools that give employers control of their personal data on personal devices. In fact, these stats show that many employees simply refuse to adopt MDM and MAM. Even IT professionals, those who purchase these solutions with the knowledge they will be deployed in the organization and have a deep familiarity with the functions and capabilities of these tools, refuse to participate.
- What capability do you most need in a security solution? Visibility into how data is shared Control over access from unmanaged devices Data leakage prevention Ability to remotely wipe devices Enforce device PIN or encryption
- The old approach to the problem is to secure the infrastructure. Secure your network, put agents on every trusted device to manage the device etc. Fact is that the "trusted device" approach makes you more vulnerable to breaches since users take their devices home for the weekend, and come back infected on monday. Malware Mondays! and expensive to administer since you have to manage every device and network. And usability is poor too. One of the big problems with this architecture -- unmanaged devices accessing the cloud directly. No visibility or control for IT teams. Complex to deploy/ Poor user experience/ Data-sync proliferation/ BYOD blindspot
- 2500 employees
- 2500 employees