Vendor Risks: Preparing for the WorstCISO Phil Curran on the Value of Testing Incident Response
Testing an incident response plan for use when a vendor has a security incident is an essential component of risk management, says Phil Curran, CISO at Cooper University Health Care.
In a video interview at Information Security Media Group's recent Healthcare Security Summit in New York, Curran discusses:
- Monitoring network activity for cryptojacking and other anomalous activity;
- Managing IoT device risks;
- Addressing third-party risks to patient data.
Curran is chief information assurance and privacy officer at Cooper University Health Care in Camden, New Jersey. He is responsible for managing governance and regulatory compliance, risk assessment and management, threat intelligence and vulnerability assessment, privacy and security investigations, business continuity, and awareness and training.