
INSIGHTS FOR HEALTH CARE	Oct. 25, 2016

CONNECT

800.280.0354

WHO WE SERVE

Critical Access Hospitals
Health Systems
Medical Professionals
Senior Living

ABOUT US

Eide Bailly is a top 25 CPA and business advisory firm with a national health care practice.

Health Care News Network (HCNN), is published on an as-needed basis to keep you informed of current news impacting health care organizations.

CAH WEBINAR

The fall Critical Access Hospital Webinar Series is Oct. 21-Dec. 9.

For more information and to register, click here.

REGISTER NOW

The ACA Update & Compliance Consideration webinars are Oct. 25-27. Register here.

HAVE YOU SIGNED UP?

The MACRA Webinar Series is Nov. 9-10. Register now!

SHARE

Transparency and Independence: Health Care Management's Greatest Cyber Security Needs

By Anders Erickson and Jon Ault

Cyber security threats to organizations have never been greater. The severity and impact of cyber threats have changed the landscape in which governments, organizations, individuals and, specifically, health care organizations of all sizes and complexities (e.g., Banner Health, Hollywood Presbyterian Medical Center, and Community Health Systems in Brentwood, Tenn.) operate. A study by the Brookings Institution predicts that one in four data breaches this year will impact the health care industry. The recent study by Brookings showed that since late 2009, the medical information of more than 155 million Americans has been exposed without their permission through about 1,500 breaches.

Trustees and executives recognize they're being held accountable for the data entrusted to their organization. A cyber security mistake can lead to loss of data, trust, customer base and more. If not properly managed, cyber risks can lead to an organization's demise. To effectively manage cyber security risks, trustees and executives need greater transparency in the IT activities of their companies and an independent evaluation of the adequacy of what their organizations are doing to protect data.

Transparency Matters
One of the greatest challenges facing most trustees and executives is the complexity of the IT world. For most organizations, those responsible for managing IT systems operate in a bubble. People outside the IT group (and even some within it) understand little of the technologies or operations that provide the most basic technology-based services that organizations rely on, like email or web services. When in recent history have organizations been so dependent on a service they know so little about? When have trustees and executives been so ill prepared to manage the risks posed by a critical aspect of their business, specifically the security of their IT operations? Learn more here.

Questions?

Please contact Anders Erickson, Jon Ault or your Eide Bailly representative.

Anders Erickson, CISA, CISSP, CRISC

Risk Advisory Senior Manager

208.383.4731

aerickson@eidebailly.com

Jon Ault, M.S.

Technology Advisory Senior Manager

701.476.8913

jault@eidebailly.com

This publication is produced and published by Eide Bailly and distributed with the understanding that the information contained does not constitute legal, accounting or other professional advice. It is not intended to be responsive to any individual situation or concerns as the contents of the publication are intended for general informational purposes only. Readers are urged not to act upon the information contained in this publication without first consulting competent legal, accounting or other professional advice regarding implications of a particular factual situation. Questions and information for publication can be submitted to your Eide Bailly representative. To request reprints of this publication, send a written request to RequestReprints@eidebailly.com.
� 2016 Eide Bailly LLP.