3rd Party Risk Management , COVID-19 , Governance & Risk Management
COVID-19: Critical Measures for Supply Chain Security
Michael McNeil, CISO of McKesson Corp., Discusses Key ConsiderationsAs the healthcare sector prepares for the distribution of COVID-19 vaccines, intensifying the attention to supply chain cybersecurity is critical, says Michael McNeil, senior vice president and global CISO of McKesson Corp., which distributes pharmaceuticals and medical supplies.
See Also: OnDemand | Secure Your Vendor's Access from Attacks on Third-party Vulnerabilities
“When you are … looking at something that has to be executed from a holistic perspective within what we are going through with the pandemic, we clearly know in the healthcare industry … the spotlight with the bad guys is on us,” he says in a video interview with Information Security Media Group.
With that in mind, it is vital for pharmaceutical firms and other healthcare sector supply chain partners to increase their monitoring capabilities, execute strong security solutions and gain a greater understanding of “what our assets are and how we need to better secure them,” he says.
Vital Collaboration
Partnering with industry organizations such as the Health Information Sharing and Analysis Center and the Healthcare and Public Health Sector Coordinating Council can help facilitate cyber intelligence gathering, he notes.
That collaboration can help McKesson and other companies to improve real-time monitoring of threats to the supply chain, he says.
In the video interview, McNeil also discusses:
- Lessons emerging from recent ransomware and other cyberattacks affecting healthcare sector organizations during the COVID-19 pandemic;
- Top medical device cybersecurity issues;
- His role as CISO at McKesson.
McNeil is senior vice president and global CISO at McKesson Corp. He was previously global product security and services officer for Royal Philips, and prior to that, was global chief privacy and security officer at Medtronic. McNeil was a member of the Department of Health and Human Services’ healthcare industry cybersecurity task force and is currently a board member of the Association for the Advancement of Medical Instrumentation and also of the Health Information Sharing and Analysis Center.