1
Cells, Microbes & Viruses / Re: What kind of cyber security should we use in a clinical diagnostics lab?
« on: 03/09/2018 13:19:09 »
Thanks for replying, Evan!
We use a “firewall” and we send the test results via secured emails or print it out for the clients. And yes, the staff security education is not easy at all, even if logging of is not a complicated thing to do people still forget to do it pretty often:/ Alancalverd has shared his experience in another thread (and he mentioned your reply there!)) about his lab’s employee who plugged his own laptop into the lab’s system... and got fired.
Could you recommend how to protect not only the patients’ data, but also the testing equipment itself? Knowing that the suppliers are different, and having in mind there are both brand new and good-old devices?
We use a “firewall” and we send the test results via secured emails or print it out for the clients. And yes, the staff security education is not easy at all, even if logging of is not a complicated thing to do people still forget to do it pretty often:/ Alancalverd has shared his experience in another thread (and he mentioned your reply there!)) about his lab’s employee who plugged his own laptop into the lab’s system... and got fired.
Could you recommend how to protect not only the patients’ data, but also the testing equipment itself? Knowing that the suppliers are different, and having in mind there are both brand new and good-old devices?
If you need to transfer some test results to a medical practitioner, do you send them as an unencrypted email, or is there some government-sponsored health record where you can upload the test results as an encrypted transfer, and the medical practitioner can download the results as an encrypted transfer?
You could also install a "firewall" between your lab network and the public internet. This can block some threats, and take records that highlight when you have been hacked from the public internet.
A lot of threats come from inside your network - how do you screen your staff?
- How would you prevent members of the public from accessing your systems if they were left alone in your clinic (logging off when leaving the room might help).