HITEQ Health Center Information Blocking Avenger

This badge is designed to support health center staff who work with data every day to tell a comprehensive story with their data and foster a data-driven culture. Materials include a dashboard design guide, the Learning to Love your Data webinar series, and a resource detailing how data visualization can be used to support value-based care.  Take some time to review the resources on this page and then fill out the submission form on the right and you will be rewarded with a Data Storyteller badge!  This is an official badge that is submitted by the HITEQ Center as a proof of completion to the blockchain. Your credentials can be added to profiles such as LinkedIn and verified through accreditation services such as Accredible and Open Badge.

Information Blocking Avenger Curriculum
Health Center Resilience in the Face of Cyber Adversity Health Center Resilience in the Face of Cyber Adversity

Health Center Resilience in the Face of Cyber Adversity

A Case Study of the Family Health Center of Worcester’s Ransomware Incident, February 2024

Molly Rafferty 0 2563
The use of ransomware — malicious software that restricts access to computer systems with financial demands — has escalated, targeting health centers and putting countless lives at risk. This dire reality came to the forefront during the alarming ransomware attack on the Family Health Center of Worcester, Inc. (FHCW), where the personal health information and care continuity for thousands of patients were compromised. This resource uses FHCW's experience as a case study to demonstrate the imperative of preparedness and the strength of a community-centered response in ensuring the continuity of healthcare services amidst the ever-growing tide of cyber vulnerabilities.
Read more
Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 4 Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 4

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 4

Virtual Learning Collaborative

Nye Day 0 2715

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as health centers use new tools and the introduction of artificial intelligence (AI). As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. 

To support health centers in their cybersecurity strategy and implementation, the HITEQ Center offered a free learning collaborative -- Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response. This learning collaborative involved four structured virtual learning sessions. During the series participants engaged with subject matter experts and their colleagues in peer-to-peer learning and discussion. Topics included: health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, cybersecurity implications of generative artificial intelligence in health centers, and incident response planning from a cybersecurity perspective.

 

Session 4: Cybersecurity Incident Response Planning for Health Centers

According to IBM's annual Cost of Data Breach Report, the average cost of a data breach for a healthcare organization is more than $10 million. Having a well-documented cybersecurity incident response plan is essential and required for all Health Centers due to the sensitivity of the patient data they are responsible for maintaining. The cost and damage caused by a data breach is often exorbitant, but a strategic incident plan can help to significantly mitigate such effects, and potentially, prevent them from occurring in the first place. This session will provide an overview of incident response planning requirements for health centers and review established workflows for common incident response scenarios such as ransomware attacks.

 

Read more
Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response Learning Collaborative - Session 3 Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response Learning Collaborative - Session 3

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response Learning Collaborative - Session 3

Virtual Learning Collaborative

Nye Day 0 2494

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as health centers use new tools and the introduction of artificial intelligence (AI). As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. 

To support health centers in their cybersecurity strategy and implementation, the HITEQ Center is offering a free learning collaborative -- Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response. This learning collaborative will involve four structured virtual learning sessions. During the series participants engaged with subject matter experts and their colleagues in peer-to-peer learning and discussion. Topics included: health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, cybersecurity implications of generative artificial intelligence in health centers, and incident response planning from a cybersecurity perspective.

Session 3: Cybersecurity Implications of Generative Artificial Intelligence in Health Centers

Generative Artificial Intelligence (AI) technologies (e.g., ChatGPT, Google Bard) has exploded in 2023, catapulting new forms of rapid processing of text, audio, visual data (i.e., large language models and machine learning) to the forefront including in healthcare. The rapid rise forces health centers to grapple with what possibilities AI has to offer and it’s many potential risks. Both in terms of provision of care as well as in management of IT and related services. As these new tools are introduced and integrated to address acute and future needs, it becomes critically important to ensure that patients' data remains secure. This session will discuss recommendations and strategies for assessing risk and improving cybersecurity policies and procedures in relation to AI and it’s attendant technologies.

 

Read more
Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 2 Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 2

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 2

Virtual Learning Collaborative

Nye Day 0 2337

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as health centers use new tools and the introduction of artificial intelligence (AI). As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. 

To support health centers in their cybersecurity strategy and implementation, the HITEQ Center is offering a free learning collaborative -- Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response. This learning collaborative will involve four structured virtual learning sessions. During the series participants will engage with subject matter experts and their colleagues in peer-to-peer learning and discussion. Topics will include: health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, cybersecurity implications of generative artificial intelligence in health centers, and incident response planning from a cybersecurity perspective.

Session 2: Health Center Hacking Combat and Breach Response Strategies for Awareness, Management, and Training

In this session, we discussed breach mitigation, ways in which to operationalize cybersecurity in order to better mitigate risks, reviewed risk management tools, and methods for defending against cybersecurity attacks. Breach can occur through both internal and external network leaks, through malware such as ransomware and through physical means on site. We covered topics related to general knowledge about breach mitigation, methods for mitigating against breach incidences, and addressing gaps in health center defenses.

 

 

Read more
Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 1 Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 1

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 1

Virtual Learning Collaborative

Nye Day 0 2781

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as health centers use new tools and the introduction of artificial intelligence (AI). As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department.

To support health centers in their cybersecurity strategy and implementation, the HITEQ Center is offering a free learning collaborative -- Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response. This learning collaborative will involve four structured virtual learning sessions. During the series participants will engage with subject matter experts and their colleagues in peer-to-peer learning and discussion. Topics will include: health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, cybersecurity implications of generative artificial intelligence in health centers, and incident response planning from a cybersecurity perspective.

Session 1: Identifying and Assessing Cybersecurity Risks at Your Health Center
In the kick-off to our cybersecurity learning collaborative, we sought to build knowledge and increase Health Centers' capacity to effectively prepare for and defend against the current onslaught of malware and ransomware attacks being levied against them. Participants looked at ways to build cybersecurity infrastructure through risk management frameworks and strategic risk assessment, with a focus on protecting information across the whole organization.
 

Read more
RSS
Data Storyteller Badge