Vendor Risks: Preparing for the Worst
CISO Phil Curran on the Value of Testing Incident ResponseTesting an incident response plan for use when a vendor has a security incident is an essential component of risk management, says Phil Curran, CISO at Cooper University Health Care.
See Also: Breaking Down Silos With a Holistic View of Security, Risk
In a video interview at Information Security Media Group's recent Healthcare Security Summit in New York, Curran discusses:
- Monitoring network activity for cryptojacking and other anomalous activity;
- Managing IoT device risks;
- Addressing third-party risks to patient data.
Curran is chief information assurance and privacy officer at Cooper University Health Care in Camden, New Jersey. He is responsible for managing governance and regulatory compliance, risk assessment and management, threat intelligence and vulnerability assessment, privacy and security investigations, business continuity, and awareness and training.