January Newsletter | Cybersecurity & Compliance Resources for Healthcare Organizations

View in browser

January 2022

We're starting off the new year by sharing insights from the huge volume of the risk analysis work done by the Clearwater Consulting Services team over the course of 2021. Check out our summary in the first item below.

In this month's newsletter, you will also find:

A new white paper outlining the type of technical testing program that may be appropriate based on your organization's size, maturity level, and other factors
Perspective from Geisinger CISO Stephen Dunkle and Clearwater CEO Steve Cagle on ransomware risk mitigation
Upcoming opportunities to learn how to advance cybersecurity practices and keep patient data secure in the cloud

Please reach out to us with your questions and concerns at info@clearwatercompliance.com.

-The Clearwater Team

If Vulnerabilities Could Talk: The Year in Risk Analysis

Clearwater consultants conducted hundreds of risk analyses for our healthcare customers over the course of 2021. In this blog, we’ve summarized key insights from a pool of more than 50 individual risk analyses covering more than 1,000 information systems.

Read the Blog

Technical Testing and the HIPAA Security Rule White Paper

Technical Testing & the HIPAA Security Rule

In this paper, we review the role of technical testing in strong compliance and security programs and provide examples of what an appropriate technical testing program may look like for different types of healthcare organizations.

Access the White Paper

How to stop ransomware? It starts with enterprise risk management

"Cybersecurity traditionally has been around building a strategy with a well-defined perimeter, and building that wall, and keeping people out," says Clearwater CEO Steve Cagle in a Healthcare IT News story recapping his discussion with Geisinger CISO Stephen Dunkle and Editor Kat Jercich during last month's HIMSS Healthcare Cybersecurity Forum.

"And that's changed," Cagle continued. "The mindset has changed. We have a whole new set of vulnerabilities. The risk landscape is different, and how we go about assessing that risk and then putting different types of controls in place to bring that risk to an acceptable level, that really needs to become a core competency of the organization as these types of trends continue to evolve over time."

Read More

See below for a list of upcoming webinars and industry events where you can find Clearwater experts sharing insight on key cybersecurity and HIPAA compliance concerns.
Visit our library of On-Demand Webinars for a wealth of additional content you can review at your convenience.

FEATURED EDUCATIONAL RESOURCE

Putting Enterprise Cyber Risk Management Into Action You Tube Series

With something as important as Cyber Risk Management & HIPAA Compliance, we thought it was worth highlighting this insight-packed, educational YouTube series again. Learn more about this series created by Clearwater Founder and Executive Chairman Bob Chaput.

Learn More & Subscribe

What Cybersecurity Will Look Like in 2025 & Why That Matters Now

Alabama HFMA Winter Institute | Learn More

Advancing Your Cybersecurity Practices Through 405(d)

Clearwater Webinar | Learn More

Data Governance in AMCs: A Winning Strategy for Privacy Boards, Institutional Review Boards, and Patients

AHLA Academic Medical Centers and Teaching Hospitals Law Institute 2022 | Learn More

Keeping Patient Data Secure in the Cloud

Clearwater Webinar | Learn More