Healthcare Orgs, Take Control of Your Network! Level Up Cyber Hygiene with Diligent Vendor Vetting and Software Segmentation

Spacelabs Healthcare Banner Ad

 

The digital transformation of healthcare organizations has significantly increased reliance on software and medtech devices, weaving a complex web of interdependencies in their supply chains. This shift raises critical vulnerabilities as highlighted by infamous incidents like the SolarWinds breach, underscoring the urgency for enhanced cyber hygiene practices. With recent executive orders pushing for better security protocols, healthcare organizations are under pressure to fortify their supply chains against escalating cyber threats.

What strategies can healthcare organizations employ to effectively manage the cyber hygiene of their healthcare supply chain, including software and medtech devices?

Robin Berthier, CEO and founder of Network Perception, advocates for rigorous cyber hygiene practices within healthcare supply chains on a recent episode of Expert’s Talk. He emphasizes the necessity of standard vendor questionnaires and robust security protocols and underscores the importance of continuous vendor risk assessments and software segmentation to effectively mitigate potential cyber threats, drawing lessons from major breaches like SolarWinds.

Key takeaways:

  1. Develop Standard Questionnaires for Vendors: Establishing standard questionnaires for all vendors can help assess the risks introduced by third parties and ensure they adhere to secure coding best practices.
  2. Vet Vendor Security Practices: It’s crucial to scrutinize the security practices surrounding the build environments of vendors to prevent incidents similar to the SolarWinds breach, where malware was inserted directly into the source code.
  3. Implement Software Segmentation: By applying segmentation to software, organizations can contain potential breaches within manageable risk levels, thereby minimizing widespread impact.
  4. Regular Patching and Updates: Ensuring that all software and devices within the supply chain are regularly updated and patched can significantly reduce vulnerabilities.
  5. Continuous Risk Assessment: Continual evaluation of the risks posed by vendors and their products is essential to adapting and strengthening cybersecurity measures over time.

Article written by Sonia Gossai

Follow us on social media for the latest updates in B2B!

Image

Latest

Work-based learning
Career Planning Beyond the College Track: How Work-Based Learning Expands Career Options for Students
May 2, 2025

As debates around the value of college heat up and the demand for skilled workers rises, a growing number of educators and policymakers are rethinking the “college for all” mindset. A 2024 report from Georgetown’s CEW found that many middle-skill jobs—requiring only a certificate or associate’s degree—pay over $53,000 annually early on in a…

Read More
Ellendale AI Data Center
Applied Digital Ellendale AI Data Center: April 2025 Update
May 1, 2025

Progress continued throughout April at Applied Digital’s Ellendale AI Data Center, as construction efforts advanced across multiple fronts. With favorable weather conditions and a clear focus on critical infrastructure, the ELN02 site remains on track to support the growing demands of high-performance computing (HPC) and artificial intelligence. Key developments from April include: Metal jacketing installation…

Read More
Produce distribution
The Produce Distribution Industry Needs Flexibility, Empathy, and a New Generation of Talent
May 1, 2025

As inflation reshapes consumer habits and restaurant margins tighten, the produce distribution industry is under more pressure than ever. This high-touch, low-margin, logistics-heavy business is facing rising freight costs, labor shortages, and evolving food safety standards — all while trying to deliver perishable products across a fragmented national landscape. Between 2020 and 2024, the…

Read More
PGA Coach+
Unlocking Opportunity: Why PGA Coach+ Is a Smart Move for Growing Golf Instructors
May 1, 2025

In today’s competitive golf instruction landscape, standing out isn’t just about skill—it’s about visibility and value. PGA Coach+ is helping instructors amplify their reach by offering unlimited leads and a streamlined way to expand their client base. For many, the decision comes down to simple math: one new student can pay for the investment multiple…

Read More