Healthcare Orgs, Take Control of Your Network! Level Up Cyber Hygiene with Diligent Vendor Vetting and Software Segmentation

Robin
Robin Berthier, Ph.D.
Apr 26, 2024
cybersecurity in healthcare medtech devices Network Perception Robin Berthier SolarWinds Breach

Spacelabs Healthcare Banner Ad

 

The digital transformation of healthcare organizations has significantly increased reliance on software and medtech devices, weaving a complex web of interdependencies in their supply chains. This shift raises critical vulnerabilities as highlighted by infamous incidents like the SolarWinds breach, underscoring the urgency for enhanced cyber hygiene practices. With recent executive orders pushing for better security protocols, healthcare organizations are under pressure to fortify their supply chains against escalating cyber threats.

What strategies can healthcare organizations employ to effectively manage the cyber hygiene of their healthcare supply chain, including software and medtech devices?

Robin Berthier, CEO and founder of Network Perception, advocates for rigorous cyber hygiene practices within healthcare supply chains on a recent episode of Expert’s Talk. He emphasizes the necessity of standard vendor questionnaires and robust security protocols and underscores the importance of continuous vendor risk assessments and software segmentation to effectively mitigate potential cyber threats, drawing lessons from major breaches like SolarWinds.

Key takeaways:

  1. Develop Standard Questionnaires for Vendors: Establishing standard questionnaires for all vendors can help assess the risks introduced by third parties and ensure they adhere to secure coding best practices.
  2. Vet Vendor Security Practices: It’s crucial to scrutinize the security practices surrounding the build environments of vendors to prevent incidents similar to the SolarWinds breach, where malware was inserted directly into the source code.
  3. Implement Software Segmentation: By applying segmentation to software, organizations can contain potential breaches within manageable risk levels, thereby minimizing widespread impact.
  4. Regular Patching and Updates: Ensuring that all software and devices within the supply chain are regularly updated and patched can significantly reduce vulnerabilities.
  5. Continuous Risk Assessment: Continual evaluation of the risks posed by vendors and their products is essential to adapting and strengthening cybersecurity measures over time.

Article written by Sonia Gossai

Follow us on social media for the latest updates in B2B!

Image

Latest

workforce in security
Where Security Meets People: Building a Better Industry Through Workforce and Inclusion
March 27, 2025

The security industry is facing a moment of transformation. Amid rapid technological shifts and workforce challenges, companies are realizing that talent — recruiting it, developing it, and retaining it — is now central to long-term success. At the same time, long-overdue conversations around inclusion, representation, and culture are gaining momentum across the sector. According to…

Read More
symmetry connect
The Hidden Power of Identity Management: How Symmetry Connect Is Reshaping Physical Security
March 27, 2025

As organizations face increasing pressure to streamline operations and secure access to sensitive facilities, identity management solutions are becoming a critical focus in the physical security space. While traditional access control handles the “how” of gaining entry, identity management tackles the “who” and “why” — automating the full lifecycle of identity onboarding, change requests, and…

Read More
supply chain ownership
Why Total Supply Chain Ownership is the Future of Resilient Tech Manufacturing?
March 27, 2025

In a world where global supply chains are often fragile and reactive, AMAG Technology is taking a bold stance with a proactive, end-to-end approach. Total supply chain ownership—controlling everything from component sourcing to final product delivery—isn’t just a buzzword; it’s a lifeline in a volatile global market. With disruptions ranging from geopolitical tensions to material…

Read More
Security
Reimagining Security Integration in the Age of AI and Mobile Identity
March 26, 2025

As the physical security landscape continues to evolve, system integrators find themselves at the intersection of rapid technological innovation and ever-growing client demands. Artificial intelligence and machine learning are no longer distant concepts—they’re becoming standard components of modern security solutions, from predictive threat detection to real-time analytics. At the same time, the growing adoption of…

Read More
Related
AI in healthcare
Software & Technology
Smart Tools, Safer Patients: Dr. Arpita Hazra Talks AI in Healthcare
March 26, 2025
eye care
Healthcare
Reichert Brings Cutting-Edge Eye Care Tech to Vision Expo East 2025
March 25, 2025

As eye care rapidly evolves, Vision Expo East 2025 is the place to see where innovation meets clinical excellence — and Reichert is leading the charge. At booth F2201, practitioners can experience hands-on demos of Reichert’s latest breakthroughs in tonometry, digital refraction, and dry eye diagnostics. Of particular note is the new Tono-Vera® Tonometer,…

Read More
Demystifying the Global Health Workforce
Healthcare
Demystifying the Global Health Workforce
March 19, 2025

In the latest episode of Care Anywhere: The Global Health Workforce Podcast, host Lea Sims, Chief Marketing & Communications Officer at TruMerit (formerly CGFNS International, Inc.), is joined by Jim Campbell, Director of Health Workforce at the World Health Organization (WHO), and Peter Preziosi, President & CEO of TruMerit. Together, they explore pressing global…

Read More