Type:
General Education
Session ID:
250
Title:
Simplifying the Zero Trust Journey in Healthcare
Description:
A Zero Trust security approach shifts security teams from a castle and moat security model to one where users, devices, workloads and systems are “untrusted” and considered a potential threat vector. Zero Trust as a strategy and an architectural approach is being embraced by many organizations, including those in healthcare. But many healthcare organizations struggle with where to start. In fact, Zero Trust is a great approach to apply to connected devices in healthcare. This is because the medical and IoT devices we use in healthcare act in a deterministic manner, they behave the same way every time. An infusion pump or MRI behaves in a certain way, because of its function. By baselining normal behavior for a device, you can implement segmentation policies to allow it to behave the way it is supposed to, while blocking everything else. In this session, learn how to simplify your Zero Trust journey in healthcare, starting with discovering and classifying devices in the network, baselining device communications, to defining the appropriate policies. Explore Zero Trust use cases for connected devices, such as segmenting devices with outdated operating systems, to deliver cost avoidance and security benefits.
Level:
Intermediate
Format:
60-Minute Lecture
Learning Objective #1:
Explain Zero Trust principles and the reasons why this architectural framework is being embraced by leading organizations
Learning Objective #2:
Describe how to begin implementing Zero Trust within healthcare organizations, and outline the pitfalls to avoid
Learning Objective #3:
Explain why Zero Trust segmentation is an ideal approach to secure connected devices in healthcare
Learning Objective #4:
Discuss best practices for Zero Trust segmentation based on the real-world deployment at El Camino Health