Welcome to Risk Never Sleeps!
Oct. 4, 2023

Episode #27. Building a Robust Cybersecurity Foundation in Healthcare with Skip Sorrels, Director Cyber Security at Ascension Technologies

Episode #27. Building a Robust Cybersecurity Foundation in Healthcare with Skip Sorrels, Director Cyber Security at Ascension Technologies

Are you curious about today’s priorities in healthcare cybersecurity as new challenges like AI wait to be addressed?

In this episode, Skip Sorrels talks about his current priorities in healthcare cybersecurity, like developing and maturing a medical device security program. He stresses the importance of policies and education for AI integration, discusses third-party vendor risks and SOC 2 certifications, and underscores the significance of fundamental security measures.

Listen as Skip Sorrels shares insights and experiences in safeguarding medical systems!


For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.

Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo.

Apple Podcasts podcast player badge
Spotify podcast player badge
Castro podcast player badge
RSS Feed podcast player badge
Apple Podcasts podcast player icon Spotify podcast player icon Castro podcast player icon RSS Feed podcast player icon

About Skip Sorrels:

Skip Sorrels is a highly accomplished technology executive with a strong track record of driving innovation and transformation in the healthcare industry. As one of the Directors of Cybersecurity at Ascension Technologies, Skip plays a pivotal role in shaping the organization's technology strategy and driving digital initiatives to enhance patient care and operational efficiency. He is responsible for securing and managing hundreds of thousands of medical devices across 150 hospitals.

Things You’ll Learn:

  • There are concerns about introducing AI in healthcare, and it's crucial to establish policies and educate users about the responsible and cautious use of AI technologies.
  • Managing third-party vendor risk is a significant challenge in healthcare cybersecurity, as external entities often access sensitive healthcare data, making it vital to have stringent certification requirements like SOC 2 type two.
  • Starting with fundamental security measures, such as asset management, is essential in building a solid cybersecurity foundation in healthcare organizations. 
  • Deep packet inspection technology can provide comprehensive data visibility across a healthcare network, aiding in business intelligence, device compatibility assessments, and standardization efforts.
  • There's an ongoing exploration of using global standards organizations like ISO and ICS to evaluate and enhance device-level security in healthcare.
  • Starting with basic security measures, such as creating an asset inventory, is crucial and often overlooked but can significantly enhance cybersecurity in healthcare organizations.

Resources:

  • Connect with and follow Skip Sorrels on LinkedIn.
  • Follow Ascension Technologies on LinkedIn.
  • Visit the Ascension Technologies Website!