Three More Days to Get an iPad Air w/ Smart Keyboard with any 5 or 6 Day SANS Training - Register Today!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Cyber-Hygiene and Standards of Care: Practical Defenses for Healthcare

  • Tuesday, August 23, 2016 at 1:00 PM EDT (2016-08-23 17:00:00 UTC)
  • James Tarala

You can now attend the webcast using your mobile device!



There is no question that healthcare organizations are struggling to stop attacks. The healthcare industry has been regulated by cyber security standards and laws since 2001, yet today they seem to be the one vertical industry regressing, rather than making progress defending their information systems.

In February of 2016 the California Attorney General, Kamala Harris recommended that "the 20 controls in the Center for Internet Security's Critical Security Controls identify a minimum level of information security that all organizations that collect or maintain personal information should meet. The failure to implement all the Controls that apply to an organization's environment constitutes a lack of reasonable security."

In this presentation James Tarala, contributor to the CIS Critical Security Controls, will discuss standards of cyber security care for healthcare organizations and why the CIS Critical Security Controls are quickly becoming the standard of cyber security care for all US healthcare organizations. He will also share practical tips for implementing these controls in a healthcare setting and overcoming the barriers to implementation. Attendees should expect to leave the presentation with practical advice for using these controls to stop even the most advanced attacks in their organization.

November 14-21 | Houston, TX

Join us at the Healthcare Cybersecurity Summit to hear even more talks like this. As an attendee, you will walk away with cyber hygiene strategies that address the most pressing issues in healthcare today: ransomware, data breaches, security awareness training, and understanding their health eco-system and where ePHI resides.

Speaker Bio

James Tarala

James Tarala is a principal consultant with Enclave Security based out of Venice, Florida, and a SANS Senior Instructor. As a consultant, he has spent the past several years designing large enterprise security and infrastructure architectures, helping organizations to perform security assessments, and communicating enterprise risk to senior leadership teams. He is the author and an instructor for SEC566: Implementing and Auditing the Critical Security Controls, SEC440: Critical Security Controls: Planning, Implementing, and Auditing, and a co-author and instructor for MGT415: A Practical Introduction to Cyber Security Risk Management. Read more about James here.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.