))
CyberSecurity Sense is LBMC Information Security's podcast that provides insight and updates on such information security topics as: IPS Monitoring and Managed IDS Services, Security Information Event Management, Digital Forensic Analysis, Electronic Discovery and Litigation Support, Computer Security Incident Response, Penetration Testing, Risk Assessments, Security Program Planning, Web Application Security Assessments, ACAB LADMF Certification Assessments, CMS Information Security, FedRAM ...
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
51
The CyberPHIx: Meditology Services Podcast
Britton Burton | Sr Director of Product Strategy
The CyberPHIx is a regular audio podcast series that reports and presents expert viewpoints on data security strategy for organizations handling patient health or personal information in the delivery of health-related services. These timely programs cover trends and data security management issues such as cybersecurity risk management, HIPAA and OCR compliance strategy and vendor risk management. Meditology Services, the healthcare industry's leading security and compliance firm, moderates t ...
…
continue reading
Cybersecurity and data privacy is a requirement for any good business. So how can a CISO, CTO or compliance manager stay on top of where the industry is heading? Infosec veteran and former lead auditor, Blaise Wabo discusses the intersection of security, privacy and compliance. Topics include: Guest interviews with industry experts, framework updates, the business implications of compliance (and non-compliance), and discussions about compliance challenges, tips and tricks.
…
continue reading
C
Cybersecurity Sense
1
PCI Monthly Update: August Highlights & Requirement 5 Breakdown
24:57
24:57
Play later
Play later
Lists
Like
Liked
24:57
Tune in to the August edition of our PCI Monthly Update. We kick off with a sneak peek into the upcoming PCI North America Community Meeting in Portland and introduce the newly launched PCI Community Job Board—a dedicated platform for security talent and job postings in the payment industry. Next, we delve into Requirement 5, shedding light on anti…
…
continue reading
C
Compliance Crosswalk
1
Bridging the Gap: Insights Into the Connection Between Compliance and Security
30:29
30:29
Play later
Play later
Lists
Like
Liked
30:29
In this episode of the Compliance Crosswalk podcast, your host Blaise Wabo is joined by Jacques Antikadjian, the co-founder and chief security officer at Xano. Join them as they discuss connecting the dots between compliance and security. They emphasize the importance of integrating security and compliance measures to effectively manage risk. They …
…
continue reading
C
Cybersecurity Sense
1
PCI Monthly Update: July Insights & Innovations
24:05
24:05
Play later
Play later
Lists
Like
Liked
24:05
Dive into the latest PCI news in our July PCI Update. This episode covers key PCI developments, an in-depth exploration of Requirement 4, and a helpful QSA Q&A. We kick off this episode by previewing the upcoming PCI Community Meeting in Portland and discuss our hosts' presentation on "Generative AI: Your New Secret Weapon or an Insider Threat?" We…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Artificial Intelligence: Use Cases and Cybersecurity & Privacy Implications in Healthcare
56:38
56:38
Play later
Play later
Lists
Like
Liked
56:38
Join us for this episode of The CyberPHIx podcast, where we hear from Morgan Hague. Morgan is the manager of IT Risk Management at Meditology Services and has been in the industry for nearly a decade. He has worked with hundreds of organizations in an advisory capacity helping to assess or audit security functions to drive program maturity. He also…
…
continue reading
C
Compliance Crosswalk
1
Behind the Numbers: Insights from A-LIGN’s 2023 Benchmark Compliance Report
33:36
33:36
Play later
Play later
Lists
Like
Liked
33:36
In this episode of the Compliance Crosswalk podcast, your host Blaise Wabo is joined by his good friend and compliance expert, Patrick Sullivan, to dive deep into the A-LIGN's 2023 Compliance Benchmark Survey. Join Blaise and Patrick as they share key insights and discuss the implications of the survey results on compliance strategies in today's ev…
…
continue reading
C
Compliance Crosswalk
1
Navigating the Storm: Healthcare Compliance and Risk Management
28:05
28:05
Play later
Play later
Lists
Like
Liked
28:05
On this episode of the Compliance Crosswalk Podcast, Blaise Wabo engages in an enlightening conversation with former COO of Tulane Medical Center, Andre Duplessis. This episode zeroes in on the harrowing experience faced by Tulane Medical Center during Hurricane Katrina in 2005. Duplessis reflects upon the importance of business continuity planning…
…
continue reading
Do you know the average payout organizations are hit with for every attack? William Parks and Bill Dean discuss a service dedicated to helping your organization (big or small) withstand a ransomware attack. Bill and his team are ready to help you and your organization obtain peace of mind when it comes to these advanced threats. Questions for Bill?…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 5/8/23
43:58
43:58
Play later
Play later
Lists
Like
Liked
43:58
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: The Changes to HHS 405(d) HICP publication on the to…
…
continue reading
C
Compliance Crosswalk
1
Mobile Vulnerabilities: SIM Swap Attacks & Cellular Security
18:29
18:29
Play later
Play later
Lists
Like
Liked
18:29
After repeatedly falling victim to identity thieves through SIM swap attacks, a telecom engineer and entrepreneur, Haseeb Awan, decided to start his own carrier with security as its top priority. Today, Haseeb is the founder and CEO of EFANI Secure Mobile, a private cell phone service provider catering to individuals and organizations that need ext…
…
continue reading
LBMC Shareholder Bill Dean and William Parks spend today’s episode discussing Advance Guard, a new service offering from LBMC's Security Technical Team. Learn how Advance Guard may help protect your organization's most valuable assets, save time on compliance audits, and give peace of mind about your current security stance. Want to see Bill’s “Pre…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
HITRUST v11 and Third-Party Risk: Insights from HITRUST Leadership
46:03
46:03
Play later
Play later
Lists
Like
Liked
46:03
Join us for this episode of The CyberPHIx podcast where we hear from Ryan Patrick, Vice President of Adoption at HITRUST. Ryan works with clients to understand and implement the HITRUST-validated assessments that best suit their organization’s risk profile. Prior to this role, he spent many years as a security practitioner and IT lead in a wide ran…
…
continue reading
C
Compliance Crosswalk
1
Cybersecurity in 2023 - Dissecting Today's Top Threats and How to Prepare
23:55
23:55
Play later
Play later
Lists
Like
Liked
23:55
With a new digital landscape brought on by the pandemic, a war in Ukraine, increasingly sophisticated threat actors, artificial intelligence, and now a potential recession, the nature of how organizations are breached has fundamentally changed. No company is too small to be attacked; making a single breach can be enough to put one out of business. …
…
continue reading
C
Cybersecurity Sense
1
PCI Monthly Update: March News & Requirement 3
35:56
35:56
Play later
Play later
Lists
Like
Liked
35:56
Stay up to date with the latest in PCI compliance. In this episode, William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest in PCI news, new restrictions around PAN data, and how to master Requirement 3 while preparing for PCI 4.0. Don't miss our upcoming webinar: "How to Reduce Your PCI Scope: Tips & Technology Your Organization Needs to …
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: National Cybersecurity Strategy, 3/22/23
37:21
37:21
Play later
Play later
Lists
Like
Liked
37:21
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. Our host Britton Burton spends this entire episode reviewing and analyzing the recently released National Cybersecurity Strategy, including: Summarizing, and in some cases qu…
…
continue reading
ChatGPT is making headlines worldwide and its impact is making a lot of business owners uncomfortable. What is ChatGPT? How will this tool change how you do business? Is ChatGPT a security risk? What to expect from ChatGPT4? William Parks interviews LBMC's Data Insights team members to discuss this controversial topic, dive into facts your organiza…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
THE CYBERPHIX ROUNDUP: INDUSTRY NEWS & TRENDS, 3/1/23
42:35
42:35
Play later
Play later
Lists
Like
Liked
42:35
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: The Federal Trade Commission’s (FTC) first Health Br…
…
continue reading
C
Compliance Crosswalk
1
Which Compliance Assessment is Right for Your Organization? / Part 5: HITRUST & Federal Compliance
47:26
47:26
Play later
Play later
Lists
Like
Liked
47:26
In the final installment of this five-part series, Blaise Wabo welcomes A-LIGN's Federal Practice Lead, Tony Bai, and HITRUST Associate Director, Shreesh Bhattarai, for a deep dive into the intricacies of HITRUST, HIPAA, & Federal certifications. Together they discuss updates to the NIST 800-171 and how that affects the various government certifica…
…
continue reading
William Parks takes this podcast to introduce a key member of LBMC Information Security’s Technical Services team, Daniel Nguyen. Daniel is a manager on the team with quite the insightful background. William and Daniel spend time discussing current steps to keep your organization successful in their journey to a healthier security posture. Question…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 2/7/23
37:14
37:14
Play later
Play later
Lists
Like
Liked
37:14
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: A new National Cybersecurity Strategy coming from th…
…
continue reading
C
Compliance Crosswalk
1
Which Compliance Assessment is Right for Your Organization? / Part 4: PCI, Penetration tests, and Vulnerability Scans
40:08
40:08
Play later
Play later
Lists
Like
Liked
40:08
In the latest installment of this five-part series, Blaise Wabo welcomes A-LIGN's PCI Lead, Dustin Rich, and Technical Knowledge Leader and Research and Development Director, Joe Cortese, for a deep dive into the intricacies of PCI, Penetration tests, and Vulnerability Scans. Together they discuss new updates related to the new PCI 4.0 and the late…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 1/16/22
36:37
36:37
Play later
Play later
Lists
Like
Liked
36:37
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: New FDA authority granted by December’s omnibus bill…
…
continue reading
C
Cybersecurity Sense
1
PCI Monthly Update: January News & Requirement 1
34:55
34:55
Play later
Play later
Lists
Like
Liked
34:55
Stay up to date with the latest in PCI compliance. In this episode, William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest in PCI news and how to master Requirement 1 while preparing for PCI 4.0. For any questions, feel free to reach out to us here: Kyle Hinterberg: kyle.hinterberg@lbmc.com Andy Kerr: andy.kerr@lbmc.com William Parks: wil…
…
continue reading
C
Compliance Crosswalk
1
Which Compliance Assessment is Right for Your Organization? / Part 3: SOC 2 & ISO 27001
33:35
33:35
Play later
Play later
Lists
Like
Liked
33:35
In the latest installment of this four-part series, Blaise Wabo welcomes A-LIGN's SOC 2 lead, Shayna Davitt, and ISO 27001 lead, Adam Lubbert, for a deep dive into SOC and ISO assessments. They discuss common pitfalls companies face when pursuing both audits and how to avoid them, recent updates in the ISO 27001 standards, and the advantages of doi…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Top 10 Cyber Risk Exposure Trends and Predictions for 2023
29:55
29:55
Play later
Play later
Lists
Like
Liked
29:55
The CyberPHIx is your source for keeping up with the latest cybersecurity news, trends and industry leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights some bold, and some not so bold, predictions for healthcare cybersecurity in 2023. Topics covered include: Continued escalation and evolu…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 12/15/22
35:20
35:20
Play later
Play later
Lists
Like
Liked
35:20
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this week: OCR releases more detail on their Recognized Security…
…
continue reading
William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest PCI news, share how to create and what should be covered in an executive summary for a PCI assessment, and answer a few questions from our listeners. If you’d like us to answer and address questions on our next episode, reach out to us here: Andy Kerr – andy.kerr@lbmc.com Kyle Hinterb…
…
continue reading
Change is on the horizon for The CyberPHIx! Join us as your new host, Britton Burton, interviews your favorite host, Brian Selfridge to discuss it. This episode is a little different flavor than normal as your beloved host takes some time to explain what’s next for him and to reflect on some really interesting experiences he’s enjoyed in his cybers…
…
continue reading
C
Compliance Crosswalk
1
Which Compliance Assessment is Right for Your Organization? / Part 2
39:09
39:09
Play later
Play later
Lists
Like
Liked
39:09
Knowing which compliance assessment will best benefit your organization is just the start. Understanding the intricacies of compliance as a whole is critical in ensuring your find the right partners and people to successfully achieve compliance and leverage them to strengthen your security posture effectively. In this new episode, Blaise Wabo joins…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The Game Changer: Envisioning & Delivering Innovations in Healthcare Cyber Risk
48:16
48:16
Play later
Play later
Lists
Like
Liked
48:16
Healthcare cybersecurity has seen major game-changing risk management models and companies emerge in the last several decades. These include the introduction of the HITRUST Common Security Framework (CSF) and certification model and the emergence of companies like Meditology Services and CORL Technologies that are dedicated to solving big, complex …
…
continue reading
In this podcast, Host William Parks discusses with LBMC Information Security Senior Managers Andy Kerr and Kyle Hinterberg some of the top takeaways at this year’s PCI SSC Community Meeting. Topics discussed during this episode include changes to the “In-Place with Remediation” reporting option which was added in PCI DSS v4.0, what to do if you mis…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 11/7/22
45:07
45:07
Play later
Play later
Lists
Like
Liked
45:07
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Deep dive into new CISA Cybersecurity Performance Go…
…
continue reading
C
Compliance Crosswalk
1
Which Compliance Assessment is Right for Your Organization? / Part 1
58:01
58:01
Play later
Play later
Lists
Like
Liked
58:01
The world of compliance is one of numerous assessments and certifications, each varying in scope and effort depending on the industry they serve and the level of security. Figuring out which one is right for your organization can effectively and efficiently bolster your security posture, improving your competitive edge and offering to your clients.…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Horror Stories: Why Third-Party Vendor Risk Management is So Scary
44:39
44:39
Play later
Play later
Lists
Like
Liked
44:39
The last few years third-party vendor risk management (TPRM) has transitioned from being a relatively minor part of security and compliance programs for healthcare entities into a massive undertaking with potentially dire consequences if not managed properly. This is one of those topics that seems to really have CISOs shaking in their boots. What m…
…
continue reading
C
Cybersecurity Sense
1
Keeping Your Digital Identity Secure with Mark Burnette
47:43
47:43
Play later
Play later
Lists
Like
Liked
47:43
The Internet provides access to lots of good data, useful websites, social media options, and entertainment, but unfortunately, it also poses some risks to the security and privacy of individuals. In this episode, William Parks and Mark Burnette will share some practical tips for how you can keep yourself and your family safe and secure online. You…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 10/5/22
25:31
25:31
Play later
Play later
Lists
Like
Liked
25:31
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: New Ponemon study that links increased mortality rat…
…
continue reading
ESG is a topic we’re hearing come up more and more lately, especially as it relates to investors. If you’re unfamiliar, ESG stands for Environmental, Social and Governance. At its core, ESG is helping companies and investors understand how ESG non-financial factors impact a company and how a company impacts those factors as well. In this episode of…
…
continue reading
In this episode, Host William Parks interviews LBMC Shareholder Robyn Barton about HITRUST, what it is, the relationship between HITRUST and HIPAA, and the new HITRUST i1, r2, and bC Assessments.By William Parks
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
CISO's Guide to Making Friends: How to Engage IT for Cybersecurity Initiatives
47:26
47:26
Play later
Play later
Lists
Like
Liked
47:26
Engaging IT and other technical stakeholders to support cybersecurity initiatives can be a daunting task for security professionals. We are often the bearers of bad news or can be perceived as adding to the workloads of already overburdened IT teams. In short, it can be hard to make friends. Join us for this episode of the CyberPHIx podcast where w…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 9/8/22
56:13
56:13
Play later
Play later
Lists
Like
Liked
56:13
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Historic breach levels reached for healthcare betwee…
…
continue reading
C
Compliance Crosswalk
1
Why Should Startups Build with Cybersecurity in Mind: Featuring Cybersecurity Executive Rob Carson
36:47
36:47
Play later
Play later
Lists
Like
Liked
36:47
From advances in technology creating the "new perimeter" as a result of remote work, to the shifting perspectives on the importance of privacy, the landscape for security compliance has changed dramatically within the last five years. These changes leave startups in the early stages of product development uniquely positioned to leverage compliance …
…
continue reading
In this episode, Host William Parks shares the latest on the new cyber mercenary group, Atlas Intelligence Group or AIG.By William Parks
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Securing the Software Development Lifecycle (SDLC) in Healthcare
48:43
48:43
Play later
Play later
Lists
Like
Liked
48:43
Breaches continue to balloon for healthcare applications as the industry continues to drive innovations in virtual care, personalized medicine, and digital healthcare. Organizations that deploy robust application development security programs create the opportunity to identify and correct security weaknesses before products hit the market. Software…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 8/11/22
35:25
35:25
Play later
Play later
Lists
Like
Liked
35:25
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: IBM’s and Ponemon’s annual Cost of a Data Breach Rep…
…
continue reading
C
Compliance Crosswalk
1
Finding and Retaining Quality Cybersecurity Talent in the Midst of the Great Resignation
37:46
37:46
Play later
Play later
Lists
Like
Liked
37:46
It’s no secret that businesses across all industries and sizes are feeling the effects of the Great Resignation. So, what can organizations do to find and retain quality cybersecurity talent in these trying times? In this episode of Compliance Crosswalk, hosts Arti Lalwani and Blaise Wabo are joined by Andrew Houshian, Vice President of Service Del…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Certification Symposium: HITRUST & SOC 2 Leading Practices
1:02:52
1:02:52
Play later
Play later
Lists
Like
Liked
1:02:52
Healthcare organizations are ramping up the adoption of enterprise security certifications to provide assurance of their security program and control effectiveness to their customers and partners. Some of the most common security certifications and attestations in healthcare include HITRUST and SOC 2 Type II. Join us for our 100TH EPISODE of The Cy…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 6/30/22
49:33
49:33
Play later
Play later
Lists
Like
Liked
49:33
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Bombshell report of hospitals sharing PHI with Faceb…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
Securing Healthcare.gov & Tackling Fourth-Party Vendor Risks
38:46
38:46
Play later
Play later
Lists
Like
Liked
38:46
Join us for this episode of The CyberPHIx podcast where we hear from Bart Layton, VP of Product for CORL Technologies, who was also a leader on the team that overhauled and secured healthcare.gov. In this two-part conversation, we discuss Bart’s insights into the deployment and security of healthcare.gov as well as his perspectives on third- and fo…
…
continue reading
C
Compliance Crosswalk
1
Unpacking the 2022 Compliance Benchmark Report
32:22
32:22
Play later
Play later
Lists
Like
Liked
32:22
Earlier this month, cybersecurity and compliance firm A-LIGN released its 2022 Compliance Benchmark Report. The 2022 Compliance Benchmark Survey was conducted from November 2021 through January 4, 2022 and was comprised of questions about where these professionals see their compliance and cybersecurity programs going in 2022. Survey participation w…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The CyberPHIx Roundup: Industry News & Trends, 5/26/22
45:01
45:01
Play later
Play later
Lists
Like
Liked
45:01
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Highlights from the US Senate HELP hearing discussin…
…
continue reading
T
The CyberPHIx: Meditology Services Podcast
1
The Bleeding Edge: Healthcare Cyber Threats That Cut Deep
51:01
51:01
Play later
Play later
Lists
Like
Liked
51:01
Major shifts in the delivery of healthcare are introducing new and unforeseen cybersecurity and privacy risks. Cybersecurity and risk leaders in healthcare must rapidly adapt their programs and protection mechanisms to avoid adverse impacts from evolving cyber threats. Any one of these emerging risk areas can cut deep and have material impacts to p…
…
continue reading
