Cyber Smart Week 2018 – how to #getcybersmart?
Patients First, Conporto Health and Medical IT Advisors are supporting the 2018
#CyberSmartWeek*, New Zealand’s national cyber security awareness week aimed at helping New Zealanders protect themselves online
New Zealand Health Information Security Requirements
An organisation that does not have a health information security policy cannot assure patients their information is being treated and protected appropriately.
The New Zealand Health Information Security Framework (HISF) standard – HISO 10029:2015 – supports organisations preparation and maintenance of such a policy and framework. It provides advice about procedures, minimum requirements and technical standards. Compliance with the framework’s risk management section has been required since 1st July 2016 for any organisations managing health information.
HISF compliance requires time, skills and resources that many small and medium health organisations do not have, leading to a challenging, risky situation for their healthcare services. Here are a few resources to simplify the HISF compliance journey:
- Initial online quick HISF self-check – estimate your “gross” risk and compare against the community baseline
- Internal and External Assessment – Download the template
Talk to your IT support or PHO who can assist with further information.
- Are you still using insecure methods to transmit patient information – email and fax?
Fix it now, get a free account on the hMael secure communication platform: https://hmael.nz/
- Check if your email account has been compromised: https://haveibeenpwned.com/
- Use password managers to manage your online accounts:
Cyber Smart Week actions
- Use unique passwords: check your online accounts and make sure each one has a unique password and is not already compromised.
You can do this manually or simply setup a password manager as exemplified above.
- Turn on 2FA: adding two-factor authentication (2FA) to your login process is a simple way to add an extra layer of security to your accounts.
You can enable 2FA on most of your online accounts, and your devices. You’ll usually find the option to turn it on in the privacy settings. Check your bank’s website to see what their 2FA options are, and how to set it up. Every bank is different.
- Update your apps: when you’re alerted to an update for one of your apps, don’t ignore it — install it as soon as possible.
Make an appointment to check up on your apps this week. Install any updates that are waiting, and get rid of anything you don’t need. Your online self will thank you for it.
- Check your privacy: it’s important to be aware of how much of your online self you’re sharing, and with who.
Check the privacy controls on your social media accounts. Check that any requests for personal information are legitimate before you share your details. If a company or business asks you for information, think about why they might need it. If you’re not sure, call them to ask first. Most importantly, always check that a web page is secure before you send any information through it. Secure pages have a URL that starts with HTTPS, and will often display a padlock icon next to the URL.