Episode 3: Leveraging Resources When Chock Full of Challenges with Guest Mitch Parker
November 10, 2020
Episode 2 Show Notes
Healthcare is chock full of adventure - rising number patients, increase in malware attacks, and a shift towards remote work. On this episode of CISO STRESSED Liz sits down with Mitch Parker, Exec. Dir./CISO at Indiana University Health and talks about leveraging and maximizing resources and building trust to solve security challenges facing healthcare systems.
Mitch shares his insights on adapting to COVID, third party risk models, IOT in healthcare, and how his team is working on chasing down multiple items to make sure that they are protected against even the most basic attacks.
Take a deeper dive Into Ryuk, one of the ransomware threats targeting healthcare systems, with SCYTHE CTO Jorge Orchilles & Sean Lyngaas as they break down a threat emulation on last week’s SCYTHE ThreatThursday.
New CISO Stressed episodes are available every other Tuesday. Subscribe to SCYTHE’s YouTube Channel and watch the latest CISO Stressed episode as well as Threat Thursday and other video releases. Questions or conversation ideas? Drop us an e-mail at email@example.com with “CISO Stressed” in the subject line.
Links and Stories Discussed During Episode 3
Connect with Mitch: Twitter
About Mitch Parker
Mitchell Parker, MBA, CISSP, is the CISO, at IU Health. Mitch has eleven years’ experience in this role, having established effective organization-wide programs at multiple organizations. He is responsible for providing policy and governance oversight and research, third-party vendor guidance, proactive vulnerability research and threat modeling services, payment card and financial systems security, and security research to IU Health and IU School of Medicine. In this role, Mitch collaborates across the organization and with multiple third parties to improve the people, processes, and technologies used to facilitate security and privacy for the benefit of IU Health’s patients and team members.
Mitch also actively researches and publishes in the academic community. He is an adjunct lecturer in Health Informatics at Indiana University – Purdue University Indianapolis, and also guest lectures at multiple universities, including IUPUI, Purdue, and IU Kelley School of Business. He has also published peer-reviewed papers with collaborators across the world. Previous to his move to Indiana, Mitch was an Adjunct Professor in the Information Technology and Cyber Security (ITACS) program at the Fox School of Business at Temple University, where he taught MIS5903, the Cyber Security capstone course.
He also publishes in multiple publications, including CSO Magazine, Healthcare IT News, HealthsystemCIO.com, Security Current, Healthcare Scene, and HIMSS’ blog. He also has contributed a chapter for an upcoming Cybersecurity in Healthcare textbook, an essay to Voices of Innovation, which was published in March 2019 by HIMSS, and has a chapter in an upcoming book on Healthcare Cybersecurity for the American Bar Association’s Health Law section. Mitch has also been quoted in numerous publications, including the Wall Street Journal, ISMG, HealthITSecurity, and Becker’s Hospital Review.
Mitch also is a prolific presenter, having presented at Black Hat, DEFCON Recon and Biohacking Villages, IEEE TechIgnite, the national HIMSS conference multiple times, the HIMSS Security Forum, multiple ISMG Healthcare conferences, multiple regional HIMSS conferences, Becker’s IT+Revenue Cycle conference, and numerous other regional and national conferences.
SCYTHE provides an advanced attack emulation platform for the enterprise and cybersecurity consulting market. The SCYTHE platform enables Red, Blue, and Purple teams to build and emulate real-world adversarial campaigns in a matter of minutes. Customers are in turn enabled to validate the risk posture and exposure of their business and employees and the performance of enterprise security teams and existing security solutions. Based in Arlington, VA, the company is privately held and is funded by Gula Tech Adventures, Paladin Capital, Evolution Equity, and private industry investors. For more information email firstname.lastname@example.org, or follow on Twitter @scythe_io.