Improving regulatory compliance efforts ranks as the No. 1 information security priority for healthcare organizations in the year ahead, according to the survey.
"The survey clearly illustrates that many healthcare organizations still have a lot of work to do when it comes to safeguarding patient information," says Howard Anderson, executive editor of HealthcareInfoSecurity.
For example, the online survey of security professionals and other senior executives pinpoints the following shortcomings:
- 26 percent of organizations have yet to conduct a risk assessment, as mandated under HIPAA.
- 43 percent grade their ability to counter information security threats as poor, failing or in need of improvement.
- Less than half have a defined information security budget.
"The results of this inaugural survey are setting a benchmark for information security operations within the healthcare market," said Dave Byrd, vice president and general manager, healthcare solutions, at Diebold, a co-sponsor of the survey. "The survey results identify key areas that we can focus on to help healthcare organizations streamline security operations and mitigate risk."
Ozzie Fonseca, director at Experian Data Breach Resolution, another survey co-sponsor, says: "When I speak with business leaders about data security, many tell me that protecting sensitive data is a top priority but can't say how it's being done. I always recommend that organizations housing people's sensitive data create a thorough data breach preparedness plan, so that if data is compromised, they are able to take planned steps to mitigate losses."
Healthcare Information Security Today is an annual study, providing insights that can be tracked and measured over time. Results are analyzed and disseminated through a variety of electronic media, including audio interviews, a webinar and presentations at major industry events.
About the Sponsors:
Diebold Inc. is a global leader in providing integrated self-service delivery and security systems and services. Diebold employs more than 16,000 associates with representation in nearly 90 countries worldwide and is headquartered in the Canton, Ohio region,. Diebold is publicly traded on the New York Stock Exchange under the symbol 'DBD.' For more information, visit the company's website at www.diebold.com.
Experian Data Breach Resolution enables organizations to plan for and successfully respond to data breaches. The company has brought its global experience to thousands of data breach clients, including Fortune 500 companies. For more information, visit: www.Experian.com/DataBreach.
For a complete report on the Healthcare Information Security Today survey, please visit: https://www.healthcareinfosecurity.com/surveys.php?surveyID=10.
Information Security Media Group publishes BankInfoSecurity, CUInfoSecurity, GovInfoSecurity and HealthcareInfoSecurity. These digital media sites offer news, views, research and education on the top industry, security, regulatory and technology challenges facing information security leaders worldwide. Each site is guided by an advisory board of thought leaders from business, government and education.
ISMG's suite of educational webinars offers hands-on training by knowledgeable practitioners and is available to individual and corporate subscribers.
ISMG's custom research, including the annual Healthcare Information Security Today, Government Information Security Today and Faces of Fraud surveys, is featured at leading industry events, such as the RSA Conference, The American Conference Institute's Healthcare Information Privacy and Security Forum and BAI Payments Connect.
For more information on the Healthcare Information Security Today survey, please contact Howard Anderson, executive editor, at firstname.lastname@example.org.