Lunch and Learn Topic: Cybersecurity and Human Resources

Is it time to consider a change in how we view the employee who accidentally facilitates cyber-intrusions? Education often isn’t enough and with criminals becoming more sophisticated, perhaps we need to consider employees as threat vectors and not necessarily innocent victims in cybercrime. Changing our perspective on this could change how we respond to the growing threat landscape and without the need for an increase in technology tools or an increase in internal security personnel hiring.

This panel will discuss the viewpoint that external threats are typically addressed with perimeter defenses but these are not effective against the new attack methods which are leveraging existing communication paths and legitimate user access. Such as personnel with legitimate access to systems click on attachments or respond to business email compromise messages resulting in the person becoming an unwitting participant in a cyber-attack. Thus, a new model for protecting our organizations is required.

Moderator:
Dee Cantrell, RN, BSN, MS, FHIMSS – CIO, US Retina

Panelists:

Stan Gatewood – Chief Information Security Officer, State of Georgia

Barry Herrin, FAHIMA, FACHE, Esq. – Founder, Herrin Health Law, P.C.

Mark C. Ray – Managing Director, Nardello & Co.