In this video, Marc Menninger describes why healthcare organizations are a strong marketplace for IT security professionals. Learn how the Healthcare Insurance Portability and Accountability Act (HIPAA) requires healthcare organizations to be secure. Explore why healthcare organizations are prime cyberattack targets. Understand why the demand for IT security professionals from healthcare organizations is growing.
- (Voiceover) Healthcare organizations are another great marketplace for IT security professionals. First, healthcare organizations are required by law to be secure. All U.S. healthcare organizations must comply with the Health Insurance Portability and Accountability Act, or HIPAA, which requires them to implement an appropriate administrative, physical and technical safeguards, to ensure the security of patients' electronic-protected health information. In 2003, the HIPAA security rule was published, which established national standards to protect electronic personal information that is created, used, or maintained by a healthcare organization.
The security rule creates many requirements, including designating a security official responsible for developing, and implementing, security policies and procedures. Training all workforce members on security policies and procedures. Implementing security controls for workstations, devices, and facility access, and implementing technical safeguards for access controls, integrity controls, audit controls, and transmission security.
Ever since HIPAA was enacted in 1996, IT security has been a high priority for healthcare organizations. Yet, even with the HIPAA security rule, healthcare organizations have suffered major security breaches. Hackers target healthcare organizations because they know vast numbers of highly sensitive personal records are stored within them. Which brings us to the next reason why healthcare organizations are a key marketplace for IT security professionals - they're prime cyber attack targets.
At the end of 2015, the Identity Theft Resource Center published its data breach report. Of 780 known data breaches that year, the medical healthcare sector had the second highest number of breaches with 276, but the highest number of total records breached, by far, more than 121 million. Much of that loss was due to the Anthem hack, where more than 78 million patient records were breached, the largest healthcare breach ever.
The final reason why healthcare organizations are a strong marketplace for IT security professionals is the demand for them continues to grow. According to the 2015 Burning Glass Cyber Security jobs report, job postings for IT security professionals from healthcare organizations grew 118% between 2010 and 2014. As the threats to healthcare organizations continue to rise, so will the need for IT security professionals.
Marc closes with a few pieces of career advice specific to the world of information security, which will help you succeed in this dynamic and high-demand industry.
- IT security key concepts
- The job marketplace (government vs. healthcare, etc.)
- IT security success traits
- Career specializations
- IT security certifications
- Getting experience
- Marketing yourself