Third-Party Risk and Data Security for Health Care in a Cloud Native World
The move to the cloud and the use of electronic health records has multiplied the number of third parties with access to a hospital’s sensitive data, increasing the attack surface. When hospitals and health systems do business with a third party, security becomes a shared responsibility. Inadequate security policies and controls within a third-party provider can lead to a compromise of the organization’s network, data or services. This executive dialogue examines how hospitals and health systems are introducing internal and external threat detection and response to defend data from internal, external and third-party threats in a cost-effective manner.