))
Join Darren Gallop as he shares his unique perspective on entrepreneurship, cybersecurity, and the intersection of work, life, and travel. A linguist, musician, and world traveler, Darren brings a diverse background to his experiences building a startup. Tune in as he delves into the challenges and triumphs of being an entrepreneur, offers insights on the field of cybersecurity, and reflects on the ways in which his love of language and music have shaped his journey. Whether you're an entrep ...
…
continue reading
The CyberPHIx is a regular audio podcast series that reports and presents expert viewpoints on data security strategy for organizations handling patient health or personal information in the delivery of health-related services. These timely programs cover trends and data security management issues such as cybersecurity risk management, HIPAA and OCR compliance strategy and vendor risk management. Meditology Services, the healthcare industry's leading security and compliance firm, moderates t ...
…
continue reading
1
Security, Privacy, Risk Management, Cryptocurrencies, & Fintech
Security, Privacy, Risk, Crypto, & Fintech
Sharing my experience, knowldedge, and views. #security #privacy #risk #fintech #blockchain #cryptocurrencies
…
continue reading
In this week's episode of "Why I am Still Awake," host Darren Gallop delves into the critical domains of Human Resource Security and Identity and Access Management (IAM). Learn how these areas are essential for securing not just your business environment but also your personal life. Darren unpacks various controls and best practices within Human Re…
…
continue reading
In this episode of "Why I am Still Awake," we delve into the essential realms of Privacy (PRV) and Data Management (DM), two core aspects of information security and data privacy tailored for small and medium-sized businesses. Join us as we explore the domain of data privacy, unpacking several common controls and key elements such as consent, accur…
…
continue reading
1
Artificial Intelligence: Use Cases and Cybersecurity & Privacy Implications in Healthcare
56:38
56:38
Play later
Play later
Lists
Like
Liked
56:38
Join us for this episode of The CyberPHIx podcast, where we hear from Morgan Hague. Morgan is the manager of IT Risk Management at Meditology Services and has been in the industry for nearly a decade. He has worked with hundreds of organizations in an advisory capacity helping to assess or audit security functions to drive program maturity. He also…
…
continue reading
In this episode of "Why I am Still Awake," Darren Gallop explores the crucial domains of Asset Management and Third-Party Management for ensuring information security and privacy. Discover their significance in protecting organizations and mitigating risks. Listen as Darren discusses the key controls within each domain, provides practical examples,…
…
continue reading
Join Darren Gallop in the premiere episode of "Why I am Still Awake," where we explore the crucial concepts of Governance, Risk, and Compliance. In this weekly podcast series, we'll cover various information security and data privacy domains and controls relevant to small and medium-sized businesses. Without diving into specific standards or regula…
…
continue reading
In this episode of "Why I am Still Awake," Darren Gallop delves into the world of ChatGPT, sharing his experiences with the AI language model over the past six months. Starting with an overview of AI and ChatGPT, Darren discusses the cost of using ChatGPT, best practices for prompt engineering, and the platform's limitations. He shares some persona…
…
continue reading
In this final episode of the Scammers and Their Scams series, Darren Gallop discusses the AI Voice Scam. The AI Voice Scam uses artificial intelligence-based voice synthesizers to mimic the voice of someone the victim knows, such as a family member or business associate. Scammers then attempt to extract money or sensitive information by creating th…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 5/8/23
43:58
43:58
Play later
Play later
Lists
Like
Liked
43:58
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: The Changes to HHS 405(d) HICP publication on the to…
…
continue reading
In Episode 4 of "Why I am Still Awake," Darren Gallop discusses the "Will You Be My Friend" scam, which targets social media users and attempts to steal personal information or compromise their accounts. Gallop shares a personal experience of his own mother nearly fell victim to this scam, and walks listeners through the steps to take if they suspe…
…
continue reading
In Episode 3 of "Why I am Still Awake," Darren Gallop dives into the world of loan scams, with a focus on the deceptive "It's Too Good To Be True Loan Scam." This particular scam preys on those who are struggling financially, offering an incredibly attractive loan with low interest rates and minimal requirements. However, as Gallop explains, the lo…
…
continue reading
In Episode 2 of "Why I am Still Awake," Darren Gallop delves into the world of scams once again, this time focusing on the notorious Baby Grand Piano Scam. As the near victim of this particular scam himself, Gallop has a personal stake in unraveling the details and uncovering the tell-tale signs of a scam in progress. Throughout the episode, Gallop…
…
continue reading
In the first episode of "Why I am Still Awake," Darren Gallop discusses the world of scammers and their scams. This episode serves as an introduction to the series and covers various topics related to scams, such as the anatomy of a scam, key indicators, and who the scammers are and why they do what they do. Additionally, Gallop provides practical …
…
continue reading
1
HITRUST v11 and Third-Party Risk: Insights from HITRUST Leadership
46:03
46:03
Play later
Play later
Lists
Like
Liked
46:03
Join us for this episode of The CyberPHIx podcast where we hear from Ryan Patrick, Vice President of Adoption at HITRUST. Ryan works with clients to understand and implement the HITRUST-validated assessments that best suit their organization’s risk profile. Prior to this role, he spent many years as a security practitioner and IT lead in a wide ran…
…
continue reading
1
The CyberPHIx Roundup: National Cybersecurity Strategy, 3/22/23
37:21
37:21
Play later
Play later
Lists
Like
Liked
37:21
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. Our host Britton Burton spends this entire episode reviewing and analyzing the recently released National Cybersecurity Strategy, including: Summarizing, and in some cases qu…
…
continue reading
1
THE CYBERPHIX ROUNDUP: INDUSTRY NEWS & TRENDS, 3/1/23
42:35
42:35
Play later
Play later
Lists
Like
Liked
42:35
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: The Federal Trade Commission’s (FTC) first Health Br…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 2/7/23
37:14
37:14
Play later
Play later
Lists
Like
Liked
37:14
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: A new National Cybersecurity Strategy coming from th…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 1/16/22
36:37
36:37
Play later
Play later
Lists
Like
Liked
36:37
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: New FDA authority granted by December’s omnibus bill…
…
continue reading
1
Top 10 Cyber Risk Exposure Trends and Predictions for 2023
29:55
29:55
Play later
Play later
Lists
Like
Liked
29:55
The CyberPHIx is your source for keeping up with the latest cybersecurity news, trends and industry leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights some bold, and some not so bold, predictions for healthcare cybersecurity in 2023. Topics covered include: Continued escalation and evolu…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 12/15/22
35:20
35:20
Play later
Play later
Lists
Like
Liked
35:20
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this week: OCR releases more detail on their Recognized Security…
…
continue reading
Change is on the horizon for The CyberPHIx! Join us as your new host, Britton Burton, interviews your favorite host, Brian Selfridge to discuss it. This episode is a little different flavor than normal as your beloved host takes some time to explain what’s next for him and to reflect on some really interesting experiences he’s enjoyed in his cybers…
…
continue reading
1
The Game Changer: Envisioning & Delivering Innovations in Healthcare Cyber Risk
48:16
48:16
Play later
Play later
Lists
Like
Liked
48:16
Healthcare cybersecurity has seen major game-changing risk management models and companies emerge in the last several decades. These include the introduction of the HITRUST Common Security Framework (CSF) and certification model and the emergence of companies like Meditology Services and CORL Technologies that are dedicated to solving big, complex …
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 11/7/22
45:07
45:07
Play later
Play later
Lists
Like
Liked
45:07
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Deep dive into new CISA Cybersecurity Performance Go…
…
continue reading
1
Horror Stories: Why Third-Party Vendor Risk Management is So Scary
44:39
44:39
Play later
Play later
Lists
Like
Liked
44:39
The last few years third-party vendor risk management (TPRM) has transitioned from being a relatively minor part of security and compliance programs for healthcare entities into a massive undertaking with potentially dire consequences if not managed properly. This is one of those topics that seems to really have CISOs shaking in their boots. What m…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 10/5/22
25:31
25:31
Play later
Play later
Lists
Like
Liked
25:31
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: New Ponemon study that links increased mortality rat…
…
continue reading
1
CISO's Guide to Making Friends: How to Engage IT for Cybersecurity Initiatives
47:26
47:26
Play later
Play later
Lists
Like
Liked
47:26
Engaging IT and other technical stakeholders to support cybersecurity initiatives can be a daunting task for security professionals. We are often the bearers of bad news or can be perceived as adding to the workloads of already overburdened IT teams. In short, it can be hard to make friends. Join us for this episode of the CyberPHIx podcast where w…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 9/8/22
56:13
56:13
Play later
Play later
Lists
Like
Liked
56:13
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Historic breach levels reached for healthcare betwee…
…
continue reading
1
Securing the Software Development Lifecycle (SDLC) in Healthcare
48:43
48:43
Play later
Play later
Lists
Like
Liked
48:43
Breaches continue to balloon for healthcare applications as the industry continues to drive innovations in virtual care, personalized medicine, and digital healthcare. Organizations that deploy robust application development security programs create the opportunity to identify and correct security weaknesses before products hit the market. Software…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 8/11/22
35:25
35:25
Play later
Play later
Lists
Like
Liked
35:25
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: IBM’s and Ponemon’s annual Cost of a Data Breach Rep…
…
continue reading
1
Certification Symposium: HITRUST & SOC 2 Leading Practices
1:02:52
1:02:52
Play later
Play later
Lists
Like
Liked
1:02:52
Healthcare organizations are ramping up the adoption of enterprise security certifications to provide assurance of their security program and control effectiveness to their customers and partners. Some of the most common security certifications and attestations in healthcare include HITRUST and SOC 2 Type II. Join us for our 100TH EPISODE of The Cy…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 6/30/22
49:33
49:33
Play later
Play later
Lists
Like
Liked
49:33
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Bombshell report of hospitals sharing PHI with Faceb…
…
continue reading
1
Securing Healthcare.gov & Tackling Fourth-Party Vendor Risks
38:46
38:46
Play later
Play later
Lists
Like
Liked
38:46
Join us for this episode of The CyberPHIx podcast where we hear from Bart Layton, VP of Product for CORL Technologies, who was also a leader on the team that overhauled and secured healthcare.gov. In this two-part conversation, we discuss Bart’s insights into the deployment and security of healthcare.gov as well as his perspectives on third- and fo…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 5/26/22
45:01
45:01
Play later
Play later
Lists
Like
Liked
45:01
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Highlights from the US Senate HELP hearing discussin…
…
continue reading
1
The Bleeding Edge: Healthcare Cyber Threats That Cut Deep
51:01
51:01
Play later
Play later
Lists
Like
Liked
51:01
Major shifts in the delivery of healthcare are introducing new and unforeseen cybersecurity and privacy risks. Cybersecurity and risk leaders in healthcare must rapidly adapt their programs and protection mechanisms to avoid adverse impacts from evolving cyber threats. Any one of these emerging risk areas can cut deep and have material impacts to p…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 4/21/22
35:33
35:33
Play later
Play later
Lists
Like
Liked
35:33
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Healthcare Cybersecurity Act introduced in the U.S. …
…
continue reading
1
Arming the Citizens: Awareness Strategies for Cyber War
28:57
28:57
Play later
Play later
Lists
Like
Liked
28:57
President Biden issued an alert recently that U.S. companies must ramp up their readiness to anticipate potential cyberattacks from Russia stemming from the conflict in Ukraine. What role do end-users play in protecting healthcare organizations during this ongoing cyberwar? Is the workforce our best defense on the front lines of cyber combat? Join …
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 3/24/22
42:30
42:30
Play later
Play later
Lists
Like
Liked
42:30
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: President Biden’s cybersecurity warning about Russia…
…
continue reading
1
Cyber Trust Falls: How Cybersecurity Enables Trust in Healthcare
40:55
40:55
Play later
Play later
Lists
Like
Liked
40:55
Who can be trusted to protect sensitive healthcare information and systems amidst a daily barrage of breach events? Healthcare cybersecurity and risk leaders must identify innovative ways to establish and maintain trust in the healthcare ecosystem through cybersecurity programs and functions. This includes being transparent about risk exposures, bu…
…
continue reading
1
The CyberPHIx Roundup: Russia/Ukraine Cyberwar Special Edition
36:55
36:55
Play later
Play later
Lists
Like
Liked
36:55
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. Healthcare organizations are scrambling to adjust their cybersecurity preparation and response capabilities in the wake of potential cyber-attacks stemming from the ongoing c…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 2/11/22
30:34
30:34
Play later
Play later
Lists
Like
Liked
30:34
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Lessons learned from a ransomware attack that encryp…
…
continue reading
1
Much Ado About SOC 2: Best Practices for Healthcare SOC 2 Audits
46:17
46:17
Play later
Play later
Lists
Like
Liked
46:17
Cyberattacks against healthcare organizations and their business associate vendors have begun to threaten patient safety and fundamental business operations. As a result, SOC 2 audit reports have become one of the most common and cost-effective vehicles for healthcare organizations to demonstrate the adoption of controls relevant to security, avail…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 1/13/22
19:16
19:16
Play later
Play later
Lists
Like
Liked
19:16
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Microsoft issues updates on the critical Apache Log4…
…
continue reading
1
Top 10 Healthcare Cybersecurity Predictions for 2022
46:49
46:49
Play later
Play later
Lists
Like
Liked
46:49
Meditology provides cybersecurity, privacy, and risk support for hundreds of healthcare entities across the country. We have been tracking macro trends in threats, risk exposures, regulations, enforcement, and best practices for healthcare cybersecurity and compliance programs. We have compiled the top cyber risk exposures trends and predictions fo…
…
continue reading
1
Healthcare Cybersecurity Rockstars: CISO Highlight Reel
51:49
51:49
Play later
Play later
Lists
Like
Liked
51:49
Meditology Services hosts the healthcare industry's leading podcast, The CyberPHIx, and has produced over 85 episodes to date. We have had the pleasure and honor of conversing with many of the nation’s leaders in healthcare cybersecurity, privacy, and compliance. Join us for this main stage event where we hear from over 20 CISOs and cybersecurity r…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 12/2/21
23:23
23:23
Play later
Play later
Lists
Like
Liked
23:23
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: FTC Final Rule released: mandatory penetration testi…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 11/18/21
26:22
26:22
Play later
Play later
Lists
Like
Liked
26:22
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Details and analysis of the new CISA incident respon…
…
continue reading
1
HITRUST Announces New Certification Model: Insights from HITRUST Leadership
55:29
55:29
Play later
Play later
Lists
Like
Liked
55:29
HITRUST provides a range of cybersecurity and privacy certification and accreditation solutions including their flagship HITRUST CSF certification, which is one of the most widely-adopted security frameworks for healthcare organizations. The demand for cybersecurity certifications and assurances like HITRUST is at an all-time high due to escalation…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 10/27/21
20:30
20:30
Play later
Play later
Lists
Like
Liked
20:30
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Highlights of 25+ Cyber Breaches to Payers, Provider…
…
continue reading
1
Calling in the Cavalry: A CISO's Perspective on New Federal Cybersecurity Guidance
37:51
37:51
Play later
Play later
Lists
Like
Liked
37:51
Breaches and ransomware infections are hitting healthcare hard alongside the critical supply chain that helps keep healthcare operations running. The federal government has been issuing a flurry of guidance, executive orders, draft regulations, diplomacy, and more to try to kickstart our national response to the cyber crisis. We are calling in the …
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 10/13/21
20:50
20:50
Play later
Play later
Lists
Like
Liked
20:50
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: Key takeaways from The Annual Cybersecurity Attitude…
…
continue reading
1
The CyberPHIx Roundup: Industry News & Trends, 9/29/21
14:58
14:58
Play later
Play later
Lists
Like
Liked
14:58
The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry. In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: OCR’s announcement of new director, Lisa J. Pino FTC…
…
continue reading
