Mobile health IT security challenge: way bigger than HIPAA?

Wearable technology and other health-related devices were big at the 2015 Consumer Electronics Show (CES) earlier this month. The potential benefits of mobile medical technology and telemedicine are enormous, from better quality of life to saving lives, not to mention controlling healthcare costs. Yet keeping data safe when it is beyond the confines of hospitals and clinics is a serious challenge, one that cannot be met merely through regulatory compliance.

In America, one regulation dominates healthcare information security: the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This was later expanded and updated by the Health Information Technology for Economic and Clinical Health Act of 2003 (the HITECH Act). However, being HIPAA and HITECH compliant is not the same as being secure, I have recorded a webinar to explain why. I also lay out the reasons for thinking that the protection of mHealth data, that is health data handled by mobile devices, is a such a big security challenge.

I hope you find this webinar helpful. Feel free to leave a comment if you think I missed important stuff, or if you think I got things wrong. If you would like a copy of the slides to use in your cybersecurity awareness and education efforts you can download them from here.

Note: You may be asked to register to watch, but there is no charge, and you only have to register once to see a whole bunch of security webinars recorded by myself and my fellow researchers.

Author Stephen Cobb, ESET

Follow us

Copyright © 2017 ESET, All Rights Reserved.