GISEC: For zero trust in healthcare, assume you're always under attack

An increase in connected devices means an increase in cyberthreats, and healthcare organizations are a big target. Since traditional perimeter security is no longer sufficient, a zero trust approach to security is necessary, say industry insiders at GISEC.

intro healthcare technologies for ma
Getty Images

If you're an IT professional, especially if you're working in healthcare, you need to keep the zero trust approach to security top of mind, according to experts meeting at GISEC 2021 in Dubai this week. That's because, despite the advantages that digital services bring, enterprises are seeing their attack surfaces grow and need to rethink the basic fundamentals of perimeter security to protect users, data and critical applications.

Organizations, particularly those such as hospitals and other healthcare organizations that hold sensitive personal data, should establish a zero trust stance, where people, devices, and applications have to prove their identity before being allowed to access resources, said health professionals and security experts at GISEC.

Digital transformation is having a profound impact on the way in which companies deploy new applications, as well their exposure to threats. Enterprises in virtually all sectors are pursuing digital transformation projects with the aim of enhancing the value of their products and services to customers, operating with greater efficiency and agility, and fostering innovation.  But even though companies have started to adopt devops workflows, security practices have not kept up.

Healthcare is one of the sectors most vulnerable to cyberattacks, due to the rapid deployment of new services based on emerging technology such as AI and IoT, as well as the sensitivity of data involved, noted security experts at GISEC.

gisec healthcare panel IDG

A panel at GISEC 2021 in Dubai took on the topic, "Zero Trust in Healthcare."

To continue reading this article register now

Download CIO's Roadmap Report: 5G in the Enterprise