Whitepaper Series for CISOs on Identity Access Management

In cybersecurity, identity is suddenly more important than ever before. This series of Health-ISAC whitepapers is designed to provide CISOs – and the broader health care community – a holistic guide on how to best approach Identity and Access Management (IAM) and its role in managing cybersecurity risk. The series provides an explanation of key concepts, outlines a framework and best practices, investigates the various identity solutions, and highlights the aspects of effective implementation. The papers are listed in a recommended order of reading.

Identity for the CISO Not Yet Paying Attention to Identity

Details why healthcare CISOs need to embrace an identity-centric approach to cybersecurity – including where and how to get started.

Health-ISAC Framework for CISOs to Manage Identity

Outlines a comprehensive Framework that health CISOs can use to architect, build and deploy a modern identity system that will protect against modern attacks and also support key business drivers.

Authentication: A Health-ISAC Guide For CISOs

A deeper dive into the Framework, starting with authentication.

Identity, Operability, Patient Access and the 21st Century Cures Act

Helps CISOs understand how an identity-centric approach to securing and enabling access to EHI will allow health organizations to minimize risks involved in complying with the US 21st Century Cures Act.

Identity and Zero Trust – A Health-ISAC Guide for CISOs

Educates health care CISOs on the basic tenets of zero trust, the challenges that may be unique to that market, and how to begin implementing the architecture.

Remote Identity Proofing – A Health-ISAC Guide for CISOs

Covers remote identity proofing solutions for health care CISOs and challenges around the technologies.

Health-ISAC Biometrics for Healthcare – A Cure-all for Identity Woes?

Overviews biometric technologies—both physiological and behavioral—that can help healthcare organizations more easily enable MFA, secure patient data, and identity proof patients

Passwordless: A Remedy for Better Security and MFA Fatigue

Health-ISAC defines passwordless technologies and how healthcare organizations can deploy the authentication technology for patients and in the enterprise. It includes case studies on different passwordless implementations.

Translate »