HIPAA Critical artwork

HIPAA Critical

114 episodes - English - Latest episode: about 2 years ago - ★★★★★ - 12 ratings

HIPAA compliance is complicated, confusing and easy to get wrong. Violations, data breaches and ransomware attacks are everywhere in healthcare. HIPAA Critical brings interviews with leaders in cybersecurity, InfoSec, healthcare, and compliance straight to you. Each 30-minute episode is designed to keep you informed and entertained. A new episode is released on the first three Wednesdays of every month.

Business News Tech News cybersecurity information security infosec healthcare hipaa email security phishing hacking
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed

Episodes

68. Aja Anderson: "Bad actors are offering your employees incentives to help them."

March 16, 2022 17:00 - 22 minutes - 15.6 MB

Episode 68 features Aja Anderson, Paubox Customer Success Manager. 

67. Aja Anderson: "The gaps in cybersecurity are not complicated, hyper-technical ones. They're just basic user errors."

February 22, 2022 14:00 - 19 minutes - 13.2 MB

Episode 67 features Aja Anderson, Paubox Customer Success Manager. 

66. Hoala Greevy: "Just automating one workflow creates an instant ROI for the business"

February 15, 2022 12:00 - 15 minutes - 10.6 MB

Episode 66 of HIPAA Critical features an interview with Founder CEO, Hoala Greevy, about workflow automation. 

65. Aja Anderson: "That's the sweet spot for threat actors coming after you because they know that there's money there."

January 19, 2022 14:00 - 15 minutes - 11 MB

Episode 65 of HIPAA Critical recaps the HIPAA Breach Report details breaches from December 2021. 

64. Dave Ledoux: "I'm ready to pivot at any time."

December 01, 2021 16:00 - 22 minutes - 15.5 MB

Episode 64 of HIPAA Critical features an interview with Dave Ledoux, CIO of Innovive Health. 

64. Dave Ledoux: "I'm ready to pivot at any time."

December 01, 2021 16:00 - 22 minutes - 15.5 MB

Episode 64 of HIPAA Critical features an interview with Dave Ledoux, CIO of Innovive Health. 

63. Aja Anderson: "As long as people can make money, they're gonna keep [attacking]. As long as your systems are not secure, you're at risk."

November 10, 2021 13:00 - 16 minutes - 11.1 MB

Episode 63 of HIPAA Critical features a discussion with Aja Anderson on this month's Paubox HIPAA Breach Report. 

63. Aja Anderson: "As long as people can make money, they're gonna keep [attacking]. As long as your systems are not secure, you're at risk."

November 10, 2021 13:00 - 16 minutes - 11.1 MB

Episode 63 of HIPAA Critical features a discussion with Aja Anderson on this month's Paubox HIPAA Breach Report. 

62. Hector Rodriguez: "In healthcare, we have the challenges of cybersecurity, disaster recovery, and recovery strategies for ransomware mitigation."

November 03, 2021 13:00 - 20 minutes - 14 MB

Episode 62 of HIPAA Critical features an interview with Hector Rodriguez, Principal Industry Specialist, Healthcare & Life Sciences - AWS

61. Su Bajaj: "The value of AI is what it's doing for you. It's not to replace people but to augment and make us more efficient and catch threats."

October 27, 2021 13:00 - 19 minutes - 13.3 MB

Episode 61 of HIPAA Critical features an interview with Su Bajaj, CTO of Compex Legal. 

60. Brian Fritton: "If you make it easy for attackers to find email addresses, they're gonna phish you."

October 20, 2021 13:00 - 21 minutes - 15.1 MB

Episode 60 of HIPAA Critical features an interview with Brian Fritton, CEO of Havoc Shield. 

59. Aja Anderson: "If you don't have something that's actually examining your encrypted HTTPS traffic, you're missing 9 out of 10 instances of malware."

October 13, 2021 13:00 - 25 minutes - 17.8 MB

Episode 59 of HIPAA Critical covers the Paubox HIPAA Breach Report for October 2021 and other cybersecurity trends with guest Aja Anderson, Paubox Customer Success Manager. 

58. Matt Cooper: "The eternal weakness is human error."

October 06, 2021 13:00 - 23 minutes - 16 MB

Episode 58 of HIPAA Critical includes an interview with Matt Cooper, Cybersecurity & Data Privacy Principal at Vanta. 

57. Hoala Greevy: "It's a matter of sorting the data, training the data, and then using those new learnings to provide greater phishing detection."

September 22, 2021 13:00 - 15 minutes - 10.8 MB

Episode 57 of HIPAA Critical features an interview about AI with Paubox Founder CEO, Hoala Greevy. 

56. Sara Sosa: "An informed team is an effective team."

September 15, 2021 13:00 - 11 minutes - 8.23 MB

Episode 56 of HIPAA Critical features an interview with Sara Sosa, Director of Information Services at Vista Care. 

55. Aja Anderson: "It is frustrating to take the extra steps, yet it is keeping us safe."

September 08, 2021 13:00 - 14 minutes - 10.1 MB

Episode 56 of HIPAA Critical welcomes back Paubox Customer Success Manager, Aja Anderson, to discuss the findings of the Paubox HIPAA Breach Report for September 2021.  

55. Aja Anderson: "It is frustrating to take the extra steps, yet it is keeping us safe."

September 08, 2021 13:00 - 14 minutes - 10.1 MB

Episode 56 of HIPAA Critical welcomes back Paubox Customer Success Manager, Aja Anderson, to discuss the findings of the Paubox HIPAA Breach Report for September 2021.  

54. Jane Harper: "All organizations have some risks. Risk is inherent."

September 01, 2021 13:00 - 19 minutes - 13.7 MB

Episode 54 includes an interview with Jane Harper. Jane is the senior director, information security risk management and business engagement at Eli Lilly and Company. 

53. Anshul Pande: "All of these changes brought about a new set of problems to solve and challenges as we implemented those technologies."

August 18, 2021 12:00 - 17 minutes - 11.8 MB

Episode 53 of the HIPAA Critical podcast features an interview with Anshul Pande, vice president and chief technology officer at Stanford Children's Health. 

52. Aja Anderson: "No matter how tight your budget is you should routinely assess the risk of your systems."

August 11, 2021 12:00 - 20 minutes - 13.9 MB

Episode 52 of HIPAA Critical welcomes back Paubox Customer Success Manager, Aja Anderson, to discuss the findings of the Paubox HIPAA Breach Report for August 2021. 

51. Dr. Eric Cole: "It's the same fundamental problem: we're not learning our lessons and keep repeating them over and over again."

August 04, 2021 13:00 - 21 minutes - 14.5 MB

Episode 51 of HIPAA Critical includes an interview with Dr. Eric Cole, a former CIA hacker and founder of Secure Anchor. Read the transcript here. More about Paubox: www.paubox.com 

50. Fred Kwong: "Risk is a language that business understands."

July 21, 2021 13:00 - 22 minutes - 15.6 MB

Fred Kwong, CISO of Delta Dental is featured on episode 50 of HIPAA Critical. Read the full transcription here.  

49. Aja Anderson: "This isn't unique to healthcare. This is happening in every industry."

July 14, 2021 13:00 - 16 minutes - 11.3 MB

Episode 49 covers the findings of the Paubox HIPAA Breach Report for July 2021.  Aja Anderson, customer success manager at Paubox, joins the episode to discuss key trends, share insights, and give cybersecurity tips. 

48. Todd Pang: "We had to do a lot of training and awareness building for what actually constitutes PHI."

July 07, 2021 14:00 - 36 minutes - 24.9 MB

Episode 48 of the HIPAA Critical Podcast includes an interview with Todd Pang, president and co-owner of Caring Manoa. 

47. Jeff Karlsson: "The Biggest Threat That Our Customers Have Is Not Having a Contingency Plan."

June 16, 2021 13:00 - 15 minutes - 10.6 MB

The challenges of 2020 are still lingering in many industries we might be in a new year. But the effects of the covid-19 pandemic reach far and wide. The way we work and the way business operated changed dramatically and almost overnight.  Jeff Karlsson is on today's episode. Jeff is the chief operating officer of Divergent Business Consulting, a Salesforce and financial consulting company. Jeff and Sierra Langston sit down to discuss the COVID-19 pandemic, how to force change across many i...

46. John Benbrook: "In Order to Safeguard That Sensitive Information, We Needed to Implement Encryption."

June 09, 2021 13:00 - 11 minutes - 7.84 MB

Elderly care organizations need to comply with HIPAA regulations and security rules, especially if they deal with their patient’s medications, doctors, or other sensitive information.  What is the best way for these types of organizations to approach HIPAA compliance and secure data? How do we keep the most vulnerable members of our society safe from bad actors?  John Benbrook, president of Oasis Senior Partners, and Paul Giovacchini, enterprise customer success manager at Paubox, join Sie...

45. Greg Reber: "This Is the Biggest Information Breach That We've Ever Seen."

June 02, 2021 13:00 - 22 minutes - 15.4 MB

Cybersecurity protocols and practices will never be a one-size-fits-all solution. Different industries have different requirements for compliance. Healthcare has vague but vast security rules to follow under HIPAA. So how do organizations stay ahead of the cybersecurity curve? Greg Reber, Founder and CEO, of AsTech Consulting, is with us on today’s episode. He and Sierra Langston discuss the changes and challenges in cybersecurity, including implementing solutions that meet regulatory stand...

44. Jared Vinson: "It Started With a Phishing Attack, but It Ended With a Whole Mess of Other Things."

May 26, 2021 13:00 - 13 minutes - 9.24 MB

With more than 500 reported HIPAA breaches in the last year, why are healthcare organizations slow to update their cybersecurity protocols and technology stacks? Is it possible for the healthcare industry to get ahead of bad actors?  Today, Sierra Langston speaks with Jared Vinson, director of cybersecurity at Hill Country Tech Guys on all things healthcare security, including phishing scams, best practices, and the aftermath of a HIPAA breach.

43. Michael Mead: "Training Is Not Just for HIPAA Security, but Cybersecurity."

May 19, 2021 13:00 - 14 minutes - 9.84 MB

The healthcare industry is slow to change and, at times, even slower to embrace innovation. Fax machines, patient portals, and complicated compliance solutions are everywhere. The challenges of these outdated and vulnerable technologies only make data breaches, HIPAA fines, and cybersecurity threats more prevalent.   On today's episode, Sierra Langston and Michael Mead of The Medical Cost Savings Solution discuss HIPAA compliance, healthcare industry challenges, and unencrypted data transfe...

42. Bonnie Castonguay: "What We've Always Wanted Was the Ability for More Seniors to Have Access to Home Care."

May 12, 2021 13:00 - 22 minutes - 15.6 MB

Almost overnight, the pandemic changed telehealth and how our most vulnerable populations receive the medical care they desperately need.   As many Americans start to take care of their aging parents at home or through an elder care center, they find navigating the complicated world of HIPAA and the American healthcare system to be confusing, expensive, and daunting.  On today's episode, Paubox Founder and CEO, Hoala Greevy, interviews Bonnie Castonguay, co-founder of Ho'okele Health on th...

41. Eoin Gregory: "You Say the Word HIPAA, and Our Providers Cringe or Turn Their Brains off."

May 05, 2021 13:00 - 16 minutes - 11.1 MB

If you work in healthcare, you know what HIPAA is, but do you and your organization understand how to maintain HIPAA compliance regarding email security and encryption? Is HIPAA compliance a “one size fits all” situation? How do organizations keep their employees and their partners compliant and safe? Today Sierra Langston sits down with Eoin Gregory of Family Billing Solutions and Travis Taylor of Paubox to discuss email encryption, the HHS Wall of Shame, and how to keep your staff, partne...

40. Ken Dabkowski "As a Tech-Centered Company, We Want to Make Sure We're Meeting the Highest Standards Possible."

April 28, 2021 13:00 - 13 minutes - 9.32 MB

What is medical cost-sharing? Is it the future of healthcare? What can modern healthcare learn from this historical industry? In this episode, Sierra Langston sits down with Ken Dabkowski, Senior Project Manager of Sedera, to discuss medical cost-sharing and Sedera's IT and cybersecurity stack.

40. Ken Dabkowski: "As a Tech-Centered Company, We Want to Make Sure We're Meeting the Highest Standards Possible."

April 28, 2021 13:00 - 13 minutes - 9.32 MB

What is medical cost-sharing? Is it the future of healthcare? What can modern healthcare learn from this historical industry? In this episode, Sierra Langston sits down with Ken Dabkowski, Senior Project Manager of Sedera, to discuss medical cost-sharing and Sedera's IT and cybersecurity stack.

39. Hannah Trum: "Certifications are a No-Brainer in the Healthcare Industry."

April 14, 2021 16:00 - 10 minutes - 7.19 MB

In this episode, you'll hear Sierra Langston, marketing manager, and Hannah Trum, marketing specialist, give their top takeaways from Paubox Spring Summit, Secure Communication During a Pandemic.  Panelists from this event include: Hoala Greevy, Founder CEO, Paubox Anshul Pande, Vice President, and Chief Technology Officer, Stanford Children's Health Chris Lindley, Chief Population Health Officer, Vail Health Julie Jackson, Director Applications and Informatics, Vail Health Susan Ibáñe...

39. Hannah Trum "Certifications are a No-Brainer in the Healthcare Industry."

April 14, 2021 16:00 - 10 minutes - 7.19 MB

In this episode, you'll hear Sierra Langston, marketing manager, and Hannah Trum, marketing specialist, give their top takeaways from Paubox Spring Summit, Secure Communication During a Pandemic.  Panelists from this event include: Hoala Greevy, Founder CEO, Paubox Anshul Pande, Vice President, and Chief Technology Officer, Stanford Children's Health Chris Lindley, Chief Population Health Officer, Vail Health Julie Jackson, Director Applications and Informatics, Vail Health Susan Ibáñe...

38. Tony UcedaVélez: "A Risk-Centric Approach is Trying to Prove the Most Likely Threats That Could Affect a Healthcare Entity."

March 31, 2021 18:00 - 16 minutes - 11 MB

You may be asking yourself what threat modeling is and why it is important? In this episode, that is what you are going to find out. Healthcare has been under attack for a slew of reasons for the past 10 years. Threat modeling, very simply put, is a way to model threats. Whether you are in healthcare tech or an insurance provider, there is a benefit to understanding who your adversaries are and where you are vulnerable to threat actors. Today we are speaking with Tony UcedaVélez, founder a...

38. Tony UcedaVélez "A Risk-Centric Approach is Trying to Prove the Most Likely Threats That Could Affect a Healthcare Entity."

March 31, 2021 18:00 - 16 minutes - 11 MB

You may be asking yourself what threat modeling is and why it is important? In this episode, that is what you are going to find out. Healthcare has been under attack for a slew of reasons for the past 10 years. Threat modeling, very simply put, is a way to model threats. Whether you are in healthcare tech or an insurance provider, there is a benefit to understanding who your adversaries are and where you are vulnerable to threat actors. Today we are speaking with Tony UcedaVélez, founder a...

37. Brian Kline: "Writing a Policy that Prohibits Sending Sensitive Information is Probably Not a Realistic Option"

March 18, 2021 15:00 - 13 minutes - 9.15 MB

Have you ever wondered how to streamline HITRUST, SOC 2 as well as other certifications and attestations? Well, in this episode, that is what you will find out. We’re going to explain how to streamline the process of developing policies and procedures, how to conduct a gap assessment & risk assessment, how to facilitate incident response exercises, how to upload evidence and meet with auditors.

37. Brian Kline "Writing a Policy that Prohibits Sending Sensitive Information is Probably Not a Realistic Option"

March 18, 2021 15:00 - 13 minutes - 9.15 MB

Have you ever wondered how to streamline HITRUST, SOC 2 as well as other certifications and attestations? Well, in this episode, that is what you will find out. We’re going to explain how to streamline the process of developing policies and procedures, how to conduct a gap assessment & risk assessment, how to facilitate incident response exercises, how to upload evidence and meet with auditors.

36. Anya Schiess: “Telemedicine is Just an Example of What COVID has Catalyzed”

March 03, 2021 17:00 - 13 minutes - 9.15 MB

Today, we're talking with Anya Schiess, Co-founder and General Partner of Healthy Ventures.  She will shed light on a variety of topics such as challenges for health systems, why modern data architecture is important, FinTech, and what is on the horizon for healthcare.

36. Anya Schiess: “Telemedicine is Just an Example of What COVID has Catalyzed”

March 03, 2021 17:00 - 13 minutes - 9.15 MB

Today, we're talking with Anya Schiess, Co-founder and General Partner of Healthy Ventures.  She will shed light on a variety of topics such as challenges for health systems, why modern data architecture is important, FinTech, and what is on the horizon for healthcare.

36. Anya Schiess “Telemedicine is Just an Example of What COVID has Catalyzed”

March 03, 2021 17:00 - 13 minutes - 9.15 MB

Today, we're talking with Anya Schiess, Co-founder and General Partner of Healthy Ventures.  She will shed light on a variety of topics such as challenges for health systems, why modern data architecture is important, FinTech, and what is on the horizon for healthcare.

35. Elena Yau: “Email Is The Most Convenient But Is Also The Highest Threat.”

February 18, 2021 17:00 - 13 minutes - 9.01 MB

Ransomware, malware, phishing attacks, and PHI email breaches continue to spike in 2021. Malware, the malicious software, is built to exploit chinks in the armor of our operating systems. This can involve pop-up ads or using it as part of a distributed denial-of-service attack. This is why HIPAA Compliant training is so important. Have you ever wondered how other healthcare organizations are training their team on HIPAA Compliance or protecting their email? Well, in this episode, that is...

35. Elena Yau “Email Is The Most Convenient But Is Also The Highest Threat.”

February 18, 2021 17:00 - 13 minutes - 9.01 MB

Ransomware, malware, phishing attacks, and PHI email breaches continue to spike in 2021. Malware, the malicious software, is built to exploit chinks in the armor of our operating systems. This can involve pop-up ads or using it as part of a distributed denial-of-service attack. This is why HIPAA Compliant training is so important. Have you ever wondered how other healthcare organizations are training their team on HIPAA Compliance or protecting their email? Well, in this episode, that is...

34. Bruce Snell "There Are Going To Be Vulnerabilities Out There That There Aren't Fixes For Yet."

February 03, 2021 14:00 - 15 minutes - 10.6 MB

Have you ever wondered how to mitigate the vulnerabilities that stem from IoT. Well, in this episode, that is what you will find out. We’re going to provide you with common vulnerabilities and current risks with devices that you use every day. Smartwatches and modern cars to name a few. Today, we have Bruce Snell, Global Vice President of Cybersecurity Strategy and Transformation at NTT Security, to discuss this topic in greater detail.

34. Bruce Snell "There's Going To Be Vulnerabilities Out There That There's Not A Fix For Yet."

February 03, 2021 14:00 - 15 minutes - 10.6 MB

Have you ever wondered how to mitigate the vulnerabilities that stem from IoT. Well, in this episode, that is what you will find out. We’re going to provide you with common vulnerabilities and current risks with devices that you use every day. Smartwatches and modern cars to name a few. Today, we have Bruce Snell, Global Vice President of Cybersecurity Strategy and Transformation at NTT Security, to discuss this topic in greater detail.

34. Bruce Snell: "There Are Going To Be Vulnerabilities Out There That There Aren't Fixes For Yet."

February 03, 2021 14:00 - 15 minutes - 10.6 MB

Have you ever wondered how to mitigate the vulnerabilities that stem from IoT. Well, in this episode, that is what you will find out. We’re going to provide you with common vulnerabilities and current risks with devices that you use every day. Smartwatches and modern cars to name a few. Today, we have Bruce Snell, Global Vice President of Cybersecurity Strategy and Transformation at NTT Security, to discuss this topic in greater detail.

33. Matthew Wallace: “COVID-19 Brought an Overnight Change to Our Organization”

January 20, 2021 17:00 - 11 minutes - 8.12 MB

Have you ever wondered how other businesses and practices are overcoming the challenges of maintaining HIPAA Compliance? Well, in this episode, that is what you’ll find out. Amongst the slew of HIPAA violations such as lack of employee training, medical record mishandling, hacking and malware, improper disposal of PHI, lies one HIPAA violation that we will be discussing in great detail, using nonsecure technology to share PHI. Matthew Wallace, Vice President of Strategic Initiatives and Pa...

33. Matthew Wallace “COVID-19 Brought an Overnight Change to Our Organization”

January 20, 2021 17:00 - 11 minutes - 8.14 MB

Have you ever wondered how other businesses and practices are overcoming the challenges of maintaining HIPAA Compliance? Well, in this episode, that is what you’ll find out. Amongst the slew of HIPAA violations such as lack of employee training, medical record mishandling, hacking and malware, improper disposal of PHI, lies one HIPAA violation that we will be discussing in great detail, using nonsecure technology to share PHI. Matthew Wallace, Vice President of Strategic Initiatives and Pa...

32. Kurt Hagerman: "The Key for Healthcare is Understanding and Containing the Risks as Best You Can"

January 07, 2021 16:00 - 15 minutes - 10.9 MB

The Internet of Things is transforming healthcare from telemedicine to augmented reality to AI. All systems, network mobility, collaboration, security etiquette need to connect and work together.  Have you ever wondered how to mitigate the vulnerabilities that stem from IoT?  Well, in this episode, that is what you will find out. We're going to give you key points for building or maintaining your overall cybersecurity strategy, as well as provide examples of how IoT is a real and growing f...