In Case of Emergency …

October 26, 2017 Avani Desai

If the NotPetya virus taught health care organizations anything, it was that having a backup plan in place should be a top priority.

Health care organizations across the country watched as the NotPetya virus crippled Nuance customers this summer, creating havoc within many HIM departments. Whether hospitals and health systems dealt with this latest virus firsthand or monitored others who did via media reports, experts say all should take this as the most recent reason to reassess cybersecurity practices.

While no measure can eliminate the possibility of a cyberattack, a solid backup plan can ensure organizations are ready to deal with a worst-case scenario such as when health care documentation is completely unavailable. In today's climate, being proactive to address such cyberthreats is an absolute imperative.

The Makings of a Sound Backup Plan

While testing is crucial, it's not easy, a reason many organizations may be tempted to skip the process. Don't, cautions Avani Desai, CISSP, CISA, CIA, CSA, CCSK, CIPP, principal and executive vice president of Schellman & Company, an independent security and privacy compliance assessor.

"The most important step is to make sure that backups are tested frequently because you need to be able to fully restore any loss of data"

Read More:

About the Author

Avani Desai

Avani Desai is a Principal and the Executive Vice President at Schellman. Avani has more than 15 years of experience in IT attestation, risk management, compliance and privacy. Avani’s primary focus is on emerging healthcare issues and privacy concerns for organizations. Named as one of the 2017 Global Leaders in Consulting by Consulting Magazine she has also been featured and published in the ISSA Journal, ITSP Magazine, ISACA Journal, Information Security Buzz, Healthcare Tech Outlook, and many more.

More Content by Avani Desai
Previous Article
Payment Security Insights
Payment Security Insights

There are some important PCI DSS deadlines coming up. Let’s start with the SSL/early TLS migrati...

Next Article
Getting started with your PCI DSS Charter
Getting started with your PCI DSS Charter

Well over a year ago, the PCI Standards Council announced, in addition to other requirements, th...


Subscribe now
to receive content updates once a week

First Name
Error - something went wrong!