Evidence-based security: Using data and analytics to protect health information

Healthcare IT News: Choosing an approach to information security for many programs is rarely as straightforward as it may seem.

So-called best practices, compliance, and frameworks appear around every corner, all of which have a slightly unique take on a similar grouping of foundational security control areas. This increasing amount of information, regulated or not, can be your best friend or worst enemy.

Infosec teams can easily get sucked into the business of hammering home controls based on what a best practice suggested, rather than what the business actually needs.

Read article