New era, new requirements: data loss prevention

摘要

Half of patients in the United States believe that electronic health records will have a negative impact on the privacy of their personal health information (CDW Healthcare, "Elevated Heart Rates: EHRs and IT Security," March 201 1). Whether those concerns turn out to be prescient or paranoia is largely based upon how healthcare organizations respond to the new security requirements of the EHR era. Without question, the cyber criminals are ready; the illicit market for personal information is growing at 500 percent a year. Yet, according to a 2010 Ponemon Institute study, 88 percent of data breaches were caused by employees making simple mistakes in handling data or broken business processes. By fixing the basic cultural and business process problems, IT security staff can then turn their attention to the real threat: malicious fraud.