Description

Should you NEVER pay after a ransomware attack?

In this episode I speak with Frank Riccardi about cybersecurity in healthcare and the event that triggered much more cyber accountability for the C-suite.

Here are some of the highlights:

• Why healthcare workers are prone to social engineering attacks
• Reasons you SHOULD and should NOT pay after ransomware attacks
• Managing shadow IT after acquisitions/mergers
• Why every member of the C-suite must understand cyber
• The importance of a culture of reporting

Frank is a former C-level executive with 25 years of experience developing compliance and privacy programs for large healthcare systems comprised of hospitals, physician practice groups, urgent care centers, and other healthcare organizations.

I really enjoyed Frank's description of shadow IT! I always thought of an employee who is using an unauthorized application, but I never thought of it from the standpoint of an acquisition/merger.

What stood out most to you? Whatever your thoughts are, feel free to let me know in the comments!

Follow Frank on LinkedIn: https://www.linkedin.com/in/frank-riccardi-261831b1/

Frank's Book (Mobilizing the C-Suite: Waging War Against Cyberattacks): https://www.amazon.com/Mobilizing-C-Suite-Waging-Against-Cyberattacks/dp/1637424248/

-----------

Thanks to our sponsor Vanta!

Want to save time filling out security questionnaires?

Experience questionnaire automation here: https://vanta.com/grcacademy

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_source=podcast&utm_medium=s1-e41&utm_campaign=courses

#cybersecurity #healthcare #hospital #informationtechnology