Healthcare Cybersecurity


The healthcare industry has made great strides in the past few years to leave the world of pen and paper and join the new era of mobility. Since 2008 there has been a 900% increase in the use of electronic health records (EHR). This shift makes it faster and easier for healthcare officials to find, record, and share information. Unfortunately, it also makes it easier for malicious entities to do the same. 

So you have an EHR. Now what? Beyond just the records themselves, medical devices are beginning to join the internet of things (IOT). As a result, some machines can log data directly into a patient's files, and doctors and nurses are able to remotely control everything from room temperature to IV drips. Electronically controlled devices are also being used to help reduce the millions of dollars lost to healthcare fraud each year. While these medical devices do provide many benefits, their weak security standards could pose a risk to patients

There's an app for that. Like it or not, mobile devices are being used in your environment. It is no longer a question of "should we allow phones and tablets", but rather, "how do we allow them to be used in a secure manner". As any CTO knows, your network is only as strong as its weakest link. Securing your computers and medical devices is a good start, but as long as there is a weak point in your security protocols there is a way to hack the system. Target, Home Depot, Anthem, and even the US government all learned this lesson the hard way. Today's workforce has come to rely on the ability to quickly and easily share information through email, text, and social apps. When policies are put in place to try and block the use of these apps workers tend to just find a way around it. Typically by using personal accounts. It may seem counterintuitive to follow the old adage "if you can't beat them join them", but in this case it may be your only choice. 

Why would anyone want to hack a doctor's office? Securing financial data and government secrets is a no brainer, but what good does Sally's shot record do anyone? HIPAA compliance does not yet fully address this new electronic frontier, so it can be tempting to think that means it's not a risk. Most of the major health insurance companies have already been hacked though with millions of customer's information being stolen in the process. Beyond the loss of patient data is the greater threat that an entire healthcare system could be shut down, similar to the hack of the Ukraine power system. This would put lives in danger and would spell disaster for any hospital or healthcare system.

How can Thursby Software help me? Sub Rosa for Apple and Android allows your users to access secure websites, sign and encrypt email, and utilize other third-party applications on their mobile device; while maintaining the security your company needs. Passwords have been proven to be insufficient for protecting sensitive information. Sub Rosa solves that problem by enabling two-factor authentication for content access, document signing, and email encryption. Thursby Software has a suite of ready to use applications already available in the Apple App Store and Google Play. Custom app development is also available upon request. 

Who else has Thursby Software helped? Thursby Software Systems helped the Navy Reserve launch a Bring-Your-Own-Device (BYOD) initiative to 58,000 reservists. This program was the first to meet government standards for BYOD, and reduced mobility costs to a tenth of what they were previously. The custom developed app, called Ready-2-Serve (R2S), accesses a specialized web portal with links to every site a reservist in the Navy needs access to. Special security policies, such as not leaving any data at rest on the device, allowed the Navy Reserve to receive an approval to operate (ATO) from their security agency. The simplicity of this app led to fast user adoption, which in turn lead to an increase in productivity. The security of the app lead to decreased network vulnerability. This custom app was designed, tested, and released in under six months. We would love to do the same for you.

How do I get started? Contact or call us at +1(817) 478-5070 today to see how we can help you increase security while maintaining usability. It's easier than you think.

Thursby Healthcare Customers


Previous Customers in the Healthcare Industry