Synopsis

Cyber Security: Getting Past the Tick Box

Health Information and Hacking are a closely intertwined pair of vines that entangles our health system. The value of digital information in healthcare continues to grow, and so does the threat, and incident, of hacking – resulting in ransom demands and privacy breaches. Regulatory requirements and punitive consequences also continue to rise, intended to staunch the flow of digital vulnerabilities that are exploited by cyber criminals. But is compliance to a list of requirements, that is, ticking the boxes, really going to result in information safety and availability? Not only can this approach be costly, it may arguably still leave organisations open to higher-risk digital shortcomings. How does an organisation move away from a periodic, siloed effort to obtain a security compliance sign-off and become an agile and evolving risk-aware entity?  The answer is to leverage risk-aware frameworks, such as the NZISM (New Zealand Information Security Manual), and operationalise those practices. This talk will focus on how to build better cyber security practices into the organisational DNA, resulting in increased assurance of information confidentiality, integrity and availability.

Biography

Liz Schoff Principal, Cybersecurity and Privacy Assurance Pleione Consulting California (USA)
Liz is a practicing digital health professional working for Pleione Consulting while  specialising in cyber security and privacy. In her current role, she assists organisations develop and operationalise cyber security programmes using integrated risk management (IRM) systems. Liz has worked in the health sector for 14 years, in both New Zealand and the US. She held various roles in well-known New Zealand organisations such as Orion Health, Health Alliance and the Northern Region DHBs. She has been active in the New Zealand professional community, chairing HINZ for a number of years and leading the organisation’s restructuring in 2014. She is also one of 21 Founding Fellows of HiNZ, recognized for her contribution to the New Zealand health sector. Liz holds a Master of Information Science from San Francisco State University and a Master of Public Health from the University of Auckland. She has international certifications in cyber security, privacy and health informatics.   Go back to keynotes summary page		Liz Schoff