December 13, 2017 By Grace Murphy 2 min read

Medical professionals now store, manage and share far more medical images than ever before. Picture archiving and communication systems (PACS) and cloud-based vendor-neutral archives (VNAs) enable health care practices to provide end users with access to medical images anytime, anywhere.

However, cybercrime poses a significant risk to the security of this protected health information (PHI). The exponential increase in connectivity and data will only continue, and while new technologies have improved performance, the attack surface has expanded concurrently.

Securing Health Care Infrastructures

The piecemeal nature of many existing health care infrastructures can leave data vulnerable to security breaches. This vulnerability, if exploited, can prove disastrous to patients concerned about their privacy and significantly damage the reputation of the affected organization.

Health care entities must implement more comprehensive, integrated security solutions to help address security compliance and reporting mandates. These solutions should:

  • Protect PACs and VNAs from external threats.
  • Secure PHI from internal attacks and leaks.
  • Generate audit reports using as much automation as possible.

Learn how New technologies help health care systems better protect and manage the imaging deluge

New technologies can help protect imaging data and files while automating workflows in accordance with regulatory requirements. They accomplish this through the discovery and classification of sensitive data, vulnerability assessments and file activity monitoring.

These technologies can help organizations detect threats, identify suspicious activity and block unauthorized access.

Source: IBM

Protecting Medical Images With Guardium

Solutions such as IBM Security’s Guardium Data Protection for Databases and Guardium Data Protection for Files can deliver significant benefits to imaging centers, providers and other health care systems that use PACS and VNAs to store and share medical images. Guardium can help identify security risks that might otherwise contribute to a potential or actual breach. The solutions are designed to help detect security breaches associated with multiple failed attempts to log in to an imaging organization’s databases and files. It can then deactivate associated accounts to make it more difficult for fraudsters to gain access.

In addition, these solutions are designed to prevent database access from outside applications and to alert administrators of potential intrusions. In doing so, the Guardium product set can help organizations prevent PHI from being shared with or accessed by unauthorized parties. It can also support the creation of policies that health care organizations can map to Health Insurance Portability and Accountability Act (HIPAA) standards.

Learn More

To learn more about how IBM Security can deliver integrated systems of analytics and defense capabilities in near real time to better secure your organization’s data, read our white paper, “Aggregate, Protect, Share: New Technologies Help Health Care Systems Better Protect and Manage the Imaging Deluge.”

More from Data Protection

Router reality check: 86% of default passwords have never been changed

4 min read - Misconfigurations remain a popular compromise point — and routers are leading the way.According to recent survey data, 86% of respondents have never changed their router admin password, and 52% have never adjusted any factory settings. This puts attackers in the perfect position to compromise enterprise networks. Why put the time and effort into creating phishing emails and stealing staff data when supposedly secure devices can be accessed using "admin" and "password" as credentials?It's time for a router reality check.Rising router risksRouters…

Preparing for the future of data privacy

4 min read - The focus on data privacy started to quickly shift beyond compliance in recent years and is expected to move even faster in the near future. Not surprisingly, the Thomson Reuters Risk & Compliance Survey Report found that 82% of respondents cited data and cybersecurity concerns as their organization’s greatest risk. However, the majority of organizations noticed a recent shift: that their organization has been moving from compliance as a “check the box” task to a strategic function.With this evolution in…

How to craft a comprehensive data cleanliness policy

3 min read - Practicing good data hygiene is critical for today’s businesses. With everything from operational efficiency to cybersecurity readiness relying on the integrity of stored data, having confidence in your organization’s data cleanliness policy is essential.But what does this involve, and how can you ensure your data cleanliness policy checks the right boxes? Luckily, there are practical steps you can follow to ensure data accuracy while mitigating the security and compliance risks that come with poor data hygiene.Understanding the 6 dimensions of…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today