Many healthcare organizations fail to respond to and report data breaches properly, according to HHS’ Breach Report. The report’s archive section indicates that most breaches could have been prevented with adequate HIPAA training and safeguards. There are indications of up to 20,000 data breaches a year that are not handled promptly. To handle breaches properly, organizations should implement internal reporting procedures, conduct risk assessments, involve law enforcement, notify individuals, and address the cause of the breach.
Board-Ready Security Metrics That Actually Matter
TL;DR Board-ready security metrics translate technical capabilities into financial risk and business outcomes. Boards need visibility across three dimensions: risk exposure, incident response capability, and
