The Office of the National Coordinator for Health Information Technology (ONC) offers 10 tips for cybersecurity in health care: (We have added some great tips to assist you with your Medical Cyber Security)
1. Establish a security culture. Help your staff understand the importance of a secure environment. Teach them the damaging results of how Ransomware can cripple your office.
2. Protect mobile devices. Do you have a plan for all your mobile devices? We recommend creating an inventory of devices, who they belong to and what they are.
3. Maintain good computer habits. For example, create log-ins for all desktops and tablets. Make sure you have screen protectors, and always log-out of that device if unattended.
4. Use a firewall. And make sure that firewall is secure.
5. Install and maintain anti-virus software. Most computers come with anti-virus software, however more than one provider can offer multi-layers of protection.
6. Plan for the unexpected. The best practice is to always be pro-active and not reactive. Just like in school, create scenarios, and drills in the event of breaches or attacks.
7. Control access to protected health information. Make sure you know who is accessing your data, and how.
8. Use strong passwords and change them regularly. Create a log of passwords, and change them all at the beginning of each quarter.
9. Limit network access. Do not allow unauthorized users to access your network.
10. Control physical access. Make sure you know everyone that is in and around your office, including Janitorial services, outside contractors, etc.