Healthcare Data Breaches Are Most Often a Result of Employee Negligence
Data breach incidents in the healthcare industry are most often tied to employee negligence and insider activity. Physical theft of devices is another significant portion of data breach incidents in this industry.
Insider access falls into two categories and can include both unintentional errors like employee negligence and intentional criminal conduct by staff. Any organization, including those in the healthcare industry, can have negligent current or former employees who purposely sell private information to cyber criminals. Lapses in the proper implementation of a security plan or gaps in procedures can then cause staff errors. In the healthcare industry, this often leads to improper disposal and improper storage of patient files. This is a soft spot for cyber criminals when they target organizations and industries. Cyber criminals look for weaknesses in organizations and then exploit those weaknesses.
The constant challenge in implementing processes in a security plan is finding the right balance between optimum security and usability, convenience and efficiency. It goes without saying; education and training of all members in an organization are vital and could help eliminate these factors in cybersecurity.
The key here is that companies can eliminate employee negligence through vigilance in excellent education and training of employees.
Read more articles on the subject: