Healthcare Orgs, Take Control of Your Network! Level Up Cyber Hygiene with Diligent Vendor Vetting and Software Segmentation

Robin
Robin Berthier, Ph.D.
Apr 26, 2024
cybersecurity in healthcare medtech devices Network Perception Robin Berthier SolarWinds Breach

Spacelabs Healthcare Banner Ad

 

The digital transformation of healthcare organizations has significantly increased reliance on software and medtech devices, weaving a complex web of interdependencies in their supply chains. This shift raises critical vulnerabilities as highlighted by infamous incidents like the SolarWinds breach, underscoring the urgency for enhanced cyber hygiene practices. With recent executive orders pushing for better security protocols, healthcare organizations are under pressure to fortify their supply chains against escalating cyber threats.

What strategies can healthcare organizations employ to effectively manage the cyber hygiene of their healthcare supply chain, including software and medtech devices?

Robin Berthier, CEO and founder of Network Perception, advocates for rigorous cyber hygiene practices within healthcare supply chains on a recent episode of Expert’s Talk. He emphasizes the necessity of standard vendor questionnaires and robust security protocols and underscores the importance of continuous vendor risk assessments and software segmentation to effectively mitigate potential cyber threats, drawing lessons from major breaches like SolarWinds.

Key takeaways:

  1. Develop Standard Questionnaires for Vendors: Establishing standard questionnaires for all vendors can help assess the risks introduced by third parties and ensure they adhere to secure coding best practices.
  2. Vet Vendor Security Practices: It’s crucial to scrutinize the security practices surrounding the build environments of vendors to prevent incidents similar to the SolarWinds breach, where malware was inserted directly into the source code.
  3. Implement Software Segmentation: By applying segmentation to software, organizations can contain potential breaches within manageable risk levels, thereby minimizing widespread impact.
  4. Regular Patching and Updates: Ensuring that all software and devices within the supply chain are regularly updated and patched can significantly reduce vulnerabilities.
  5. Continuous Risk Assessment: Continual evaluation of the risks posed by vendors and their products is essential to adapting and strengthening cybersecurity measures over time.

Article written by Sonia Gossai

Follow us on social media for the latest updates in B2B!

Image

Latest

AI in school
How AI is Changing the Safeguarding Landscape
March 24, 2026

This episode of “Safeguarding in Focus,” hosted by Sam Eustace, features Lucie Welch, an expert in primary education and safeguarding from Services for Education. The discussion centers on how AI is transforming the safeguarding landscape in schools, exploring both the risks and opportunities presented by this rapidly evolving technology. Key takeaways: Schools must address…

Read More
skilled trades mentorship
Why Leadership Without Humanity Is Failing Today’s Workplace
March 24, 2026

As the world faces historic labor shortages, an increase in burnout, and record-high turnover, organizations are confronting a leadership reckoning. In May 2024, Gallup found that more than 50 percent of U.S. employees were actively searching for new jobs or watching for openings. Taken together, these trends signal a clear and growing breakdown in…

Read More
Joint Commission 360
Understanding Joint Commission 360 Standards: What They Mean for SPD Teams (Part 2)
March 23, 2026

Healthcare teams today are feeling the pressure to move beyond last-minute compliance and instead build processes that work consistently every day. That shift is especially clear in sterile processing departments (SPDs), where the Joint Commission 360 model is redefining what “survey readiness” really means. With patient safety directly tied to instrument quality—and studies consistently…

Read More
teacher
Building the Next Generation of Educators Through Apprenticeship Pathways and Workforce-Aligned Training
March 23, 2026

Teacher shortages aren’t exactly a new headline—but lately, they’ve started to feel a lot more urgent. In some places, schools have gone years without enough fully trained teachers in the classroom, exposing real flaws in how we prepare and retain educators. Add in the rising cost of becoming a teacher and training models that haven’t…

Read More
Related
Physician
Software & Technology
Fixing the Physician Experience: Why Advocacy Is Healthcare’s Next Frontier
March 24, 2026
Joint Commission 360
Healthcare
Understanding Joint Commission 360 Standards: What They Mean for SPD Teams (Part 2)
March 23, 2026

Healthcare teams today are feeling the pressure to move beyond last-minute compliance and instead build processes that work consistently every day. That shift is especially clear in sterile processing departments (SPDs), where the Joint Commission 360 model is redefining what “survey readiness” really means. With patient safety directly tied to instrument quality—and studies consistently…

Read More
Joint Commission 360
Healthcare
Understanding Joint Commission 360 Standards: What They Mean for SPD Teams (Part 1)
March 17, 2026

For a long time, compliance in healthcare was tied to the survey cycle. Now, that model is shifting. With the introduction of Joint Commission 360, organizations are being asked to demonstrate continuous performance—not just preparedness. As patient safety comes under increasing scrutiny, The Joint Commission is moving toward an approach built on real-time data, traceability,…

Read More