Jan Thornborough
๐ค SpeakerAppearances Over Time
Podcast Appearances
So they tend to just hand it off to the IT provider or if they've got an IT team.
What it means is that leadership has blind spots around technology
what might be happening in their organizations, particularly around technology and particularly around AI.
So if they haven't put a stance in place around how AI needs to be used in their particular practice, then who knows what's going on?
So it's really about being proactive about the technology
that they're using and doing their proper due diligence around how it's going to be used, what information is going to be allowed in there, what information isn't going to be allowed in there, and then setting those standards for their entire practice.
Honestly, it's outweighing everybody's security.
So we always liken it to organisations and the same thing for health practices.
They're operating still like a horse and cart on a high-speed motorway and they slap on a jet engine and they think it's going to make them go faster, but they're not taking any considerations about the risks that might occur if they do go faster without the right guardrails in place.
I think there's a lot of work to be done because we don't have any mandatory requirements around them having to adhere to the health information security framework.
And it's best endeavours here.
And I think whilst the big, big hospitals have sufficient teams, it's the small practices and the third party suppliers that I worry about.
Because if you think about it, the hospitals, if they hit one hospital every
That's a fairly contained incident, like Waikato, for example.
But if they hit a third-party supplier like Medimap, they can take out an entire ecosystem.
So I think there's a lot of work to be done.
One of the things we saw around Medimap were people phoning in and saying, well, they never had multi-factor authentication on our logins.
Well, that's a red flag.
Anyone using these health systems or investing in these health systems actually needs to step up and say, tell me what your security is.
And if it's not good enough, don't just trust it because the pharmacy down the road or the doctors down the road is using it.