Dan Costantino, Chief Information Security Officer, and Lauren Steinfield, Chief Privacy Officer, both of Penn Medicine will be opening the 2020 Mid-Atlantics Cybersecurity forum with a joint presentation and discussion focused on how they work together to keep Penn Medicine secure and compliant.

Intelligence sharing in the healthcare industry serves an important role in protecting PHI/PII in a world where adversaries seek out ways to gain access to this valuable information. This presentation will discuss not only the elements of a successful threat intelligence program, but the importance of intelligence sharing within the healthcare industry and with regional organizations. It will touch on ways to build those relationships as well as strategies to maintain them.

As health systems become larger, more geographically diverse and care delivery becomes more networked and fragmented, the concept of segmenting the network into smaller, more manageable zones is becoming a cybersecurity best practice. It’s about reducing available attack surfaces and stopping attacks from propagating beyond the originally compromised or infected network segment but is it really achievable in healthcare? What needs to happen for it be implemented successfully.

Join our panel members for an in-depth and interactive discussion on how they are tackling the issues discussed during the program throughout our day-long program.

The basis of cyber risk and security strategies is knowing, across the entire enterprise footprint, who and what is on the network, both historically and in real-time. Believe it or not, the foundational name and IP addressing services found in every healthcare network have this information and more. In this session, Infoblox will discuss how healthcare organizations can utilize common foundational services (DNS, DHCP, and IP Address Management) as building blocks of efficient cyber risk and security strategies.

This interactive, roundtable lunch and discussion will provide participants with an opportunity to discuss how we can all work together to tackle their cybersecurity staffing challenges. Discussion topics will include identifying the groups biggest staffing challenges, developing internal training programs to grow talent organically, talent recruiting best practices and how organizations can get involved in educational programs for students.
 
1:15 PM - 1:30 PM - Strategies for Developing and Growing Your Workforce
1:30 PM – 2:00 PM – Roundtable Discussion

As threats have become more advanced and the healthcare industry has been increasingly targeted by cyber-attackers, security teams are struggling to keep up. The security skills shortage coupled with limited resources magnifies the challenges already posed by machine-speed attacks, insider threats, and low-and-slow attacks. Cyber AI serves as a force multiplier for organizations’ security teams, triaging alerts, prioritizing the most important threats, and even taking action on behalf of security teams to interrupt threats. In this session, hear about: 

• Discuss how to detect and respond to threats using AI and machine learning 
• Explore real-world examples of AI augmenting security teams
• Provide best practices to keep up with today’s rapidly evolving cyber attacks

The progress made in Merck's journey on developing an Adaptive Risk Management capability that allows us to continuously tailor our defenses based on a changing Threat landscape.

3:30 PM - 4:00 PM - Adaptive Risk Management- The Journey Continues
4:00 PM – 4:30 PM – Roundtable Discussion

Industry partner spotlights feature in-depth discussions from select industry partners. All industry partner sessions are reviewed by our advisory council before being presented in the program.

Join our panel members for an in-depth and interactive discussion on how they are tackling the issues discussed during the program throughout our day-long program.