I’ve been getting a lot of questions from my contacts at all levels of healthcare organizations concerning the best way to protect clinical infrastructure environments without impacting patient care. It comes down to three things – a username, password and human behavior.

Admit it – how many of us use the same username and password for a number of applications and/or websites?

When looking at applications for our organizations do we consider the following as a plus to save our end users time and frustrations?

In addition, do we allow the following to occur within our desktop infrastructure to please the need of select users’ workgroups?

In review of the 88 instances of security breaches reported to the Department of Health and Human Services regarding unauthorized access to a production environment of healthcare organizations, the vast number of them could have been resolved by simple changes to our infrastructure and major changes to our end user human behavior.

Start with easy-to-implement changes within our IT departments:

These are simple and easy things that can be implemented and doing so can assist and better the organization for advancement in areas like Systemwide SSO Solution and Electronic Prescription of Controlled Substances (EPCS).

These changes are things other sectors have been doing for years. We’re now the targets to get privileged information and need to protect ourselves the same way other industries have been doing for decades.