In the past few years, cybersecurity for the healthcare industry has become increasingly complicated as security matters can be a life or death situation for patients. Hospitals have become accustomed to paying ransom after an attack because it is the only way to save patients and their confidential information in the moment. But as the threat of ransomware rises for hospitals and healthcare organizations they need to develop other solutions for security breaches so that funds can be diverted towards patient care. That is where chief information security officers (CISOs) come into play, in ensuring security, compliance, and patient safety.

Cris Ewell and Dan Bowden, both CISOs in the healthcare sector describe what professionals in their field need to do in order to be successful. They believe that a CISO needs to have large influence within an organization so that key changes can be made. This usually means having a CISO report to the CEO and working with other top executives. In addition, they stress the importance of a CISO being level-headed while managing risks and knowing what to prioritize. This comes into play when they must decide whether compliance or security should be their system’s main focus. Finally, when it comes to the background of a CISO, Ewell and Bowden suggest that it’s better to have stronger business expertise but some technical knowledge is needed for certain aspects of the job. 

See how the Agile1 Machine Learning + User Behavior Analytics SOC-as-a-Service can keep you safe from a breach, schedule a demo.

Read more of the conversation here.