CS Nov-Dec 2023
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
attacks offensive<br />
As ransomware targeting healthcare<br />
organisations increases, more advanced<br />
cybersecurity is needed to protect sensitive<br />
patient data and maintain uninterrupted<br />
operations for the continuous delivery of<br />
life-critical medical services. Hospitals and<br />
healthcare organisations face a unique<br />
security and identity challenge. With<br />
shared workstations among staff, they<br />
must determine how they can distinguish<br />
who is doing what, on which device, and<br />
enforce access control policies and threat<br />
protections based on both the user who<br />
logged in at the time and the device's<br />
posture. They also need to keep track of<br />
all user activity, with logs indicating their<br />
actions for traceability and compliance<br />
requirements.<br />
To that end, Zscaler has teamed up<br />
with CrowdStrike and Imprivata to deliver<br />
a zero trust cybersecurity solution from<br />
device to cloud that's custom-made for<br />
medical institutions, it reports. "The new<br />
Zscaler integration with the Imprivata<br />
Digital Identity Platform will provide<br />
visibility, threat protection and traceability<br />
for end-to-end, multi-user, shared device<br />
access control that are required for organisations<br />
to meet regulatory requirements,<br />
including HIPAA and HITECH," says the<br />
cloud security provider.<br />
With this new integration, users of the<br />
Zscaler Zero Trust Exchange platform,<br />
Imprivata OneSign and the CrowdStrike<br />
Falcon platform will be able to more<br />
effectively adopt a zero trust architecture<br />
that offers granular access management,<br />
threat protection, and traceability<br />
capabilities to better protect against<br />
ransomware.<br />
"Cyberattacks on healthcare organisations<br />
are at an all-time high and<br />
protecting patient data is critical to<br />
maintaining trust," says Dhawal Sharma,<br />
senior vice president and general manager<br />
at Zscaler. "Zscaler's integrations with<br />
Imprivata, in addition to CrowdStrike,<br />
provide much needed help to healthcare<br />
organisations in their journey to a zero<br />
trust architecture. We're aiding workers<br />
and technicians with least privileged<br />
access to the healthcare information they<br />
need to provide care and maintain the<br />
privacy and security of patient data."<br />
LACK OF CONFIDENCE<br />
Employees are behind a widening gap in<br />
the cybersecurity of small and mediumsized<br />
enterprises (SMEs) a new survey has<br />
revealed, as over three-quarters of SMEs'<br />
C-suite and senior managers admit they<br />
have no confidence their teams are<br />
operating their own devices securely.<br />
Employees are not the only contributing<br />
factor to risk either, as the C-suite are<br />
also lacking cyber awareness: the survey -<br />
commissioned by Cowbell, a leading<br />
provider of cyber insurance for SMEs -<br />
found over three quarters of those<br />
operating at the helm of UK SMEs are<br />
unable to confidently identify a cyber<br />
incident at work, while a further 50%<br />
believe that they're unable to identify the<br />
difference between a phishing and real<br />
email.<br />
The UK has seen a drastic change in<br />
workforce lifestyle over the past three<br />
years (as of May <strong>2023</strong>, with 85% of<br />
employees currently working from home<br />
wanting a hybrid approach). Cowbell's<br />
findings show that businesses are not<br />
only unwittingly exposing themselves to<br />
risk through lack of awareness of simple<br />
protective measures, but are also putting<br />
too much onus on their employees to<br />
perform safety protocols, such as protecting<br />
devices, updating software and staying<br />
off unsafe networks.<br />
This can leave SMEs with a significantly<br />
heightened exposure to cyber risks, says<br />
Cowbell's Simon Hughes, VP and general<br />
manager (UK): "Business leaders have been<br />
AJ Thompson, Northdoor: the key to<br />
defeating phishing attacks is for the<br />
security industry as a whole to work<br />
together.<br />
Dhawal Sharma, Zscaler: cyberattacks on<br />
healthcare organisations are at an all-time<br />
high and protecting patient data is critical to<br />
maintaining trust.<br />
www.computingsecurity.co.uk @<strong>CS</strong>MagAndAwards <strong>Nov</strong>/<strong>Dec</strong> <strong>2023</strong> computing security<br />
27