Subscribe
A 9-Point Synopsis of Cybersecurity with CISO Karl West

This Week In Health IT

A 9-Point Synopsis of Cybersecurity with CISO Karl West

February 10, 2021

A 9-Point Synopsis of Cybersecurity with CISO Karl West

February 10, 2021: Cybersecurity. Don’t roll your eyes. This is serious stuff. There’s stories out there of systems having been breached for over a year before they even know about it. Karl West, former CISO at Intermountain has moved over to Sirius Computer Solutions. He guides us through everything from architecture to governance, from incident response risk to e-discovery, forensics and artificial intelligence to compliance identity access. How do you catch security breaches efficiently and quickly? It starts with architecture. You MUST build programs, tools and processes around detection, response, and recovery. What about good governance? What about compliance? And what are the best methods out there today to ensure the person in front of the keyboard is someone you want on your system?

Key Points:

  • The NIST framework  [00:08:40] 
  • The clearly defined response to security is people, processes and technologies [00:10:55] 
  • There’s so many different reporting models and governance models. Where should cybersecurity report to? [00:17:05] 
  • What is your tolerance for risk? Not the CISO tolerance. What’s the business tolerance for risk? [00:21:30]  
  • Our security team were so busy responding that they were not able to be proactive in any way [00:27:05] 
  • Identity and access. Identity is the new perimeter. [00:31:05] 
  • Identity is making sure that the person on the other end of the line is who they say they are [00:33:55] 
  • Incident management and threatened vulnerability are the bread and butter, the block and tackle of cybersecurity [00:42:15] 
  • Sirius Computer Solutions

You may also like

Subscribe to Health Podcast Network

Proudly supported by:

cover
COVID-19 Miniseries Episode 62: Mayo Clinic Q&A COVID-19 Virus, Variants and Vaccines Update