The National Institute of Standards and Technology (NIST) has released a request for information for the NIST Privacy Framework: An Enterprise Risk Management Tool ("Privacy Framework").1 The purpose of the privacy framework is to improve management of privacy risk, which is a major gap across healthcare organizations today.

Often when discussing common healthcare security threats, external breaches are the main focus. However, recent evidence shows those breaches are not the biggest concern to hospitals – they’re more concerned with breaches that can happen within their own halls, by their own internal staff. HIMSS Media recently conducted a study on behalf of SailPoint, and the consensus was that healthcare provider organizations are highly concerned with insider threats.

For over two decades, the federal government has issued directives and regulations to protect critical infrastructure from cybercrime. But as attacks on healthcare, manufacturing and the supply chain rage on, are these regulations doing enough to protect the industries we rely on?

The Fourth Industrial Revolution created a new digital world for manufacturers — one requiring greater connectivity, agility, and efficiency than ever before. To keep up with global demands, manufacturers transformed into smart factories. Now, critical operations no longer rely on just legacy applications and perimeter-based security but, instead, complex networks of software, workstations, and devices, in several different locations, accessed by hundreds of people.

It's more and more important that things that drive improved efficiencies are the things that always make it across the CFO's desk. The things that get approval are things that buy capability back, and it's a double win if you're getting more efficient while reducing risk to bad actors, stealing your data, compromising your systems. No one wants that to happen.

Listen to the podcast at DigitalSupplyChainPodcast.com