Risk Never Sleeps Podcast

Sometimes, the best cybersecurity professionals come from the most unexpected places. In this episode, Kiersten Brill shares her journey from a non-IT background into cybersecurity, highlighting how the organization supported her growth and how she’s now focused on strengthening vendor risk assessments and protecting pediatric patient data. She also reflects on the impact of a mission trip to Haiti, her pursuit of a Security+ certification, and offers advice for newcomers: embrace feedback, ask for help, and never stop learning. Tune in to hear Kiersten Brill’s inspiring journey, her challenges in healthcare security, and her advice for newcomers to the field. For more information and ways to increase risk awareness and safety, visit us at ⁠www.censinet.com⁠. Music by ⁠David Cosgrove⁠ an accomplished composer, musician, producer, and engineer. Listen to his latest project ⁠Del Piombo⁠. Learn more about your ad choices. Visit megaphone.fm/adchoices

What happens when nearly 7,000 hospitals are left to fend for themselves in the face of rising cyber threats and AI risks?In this episode, Chris Plummer reconnects with host Ed Gaudet to share cautious optimism about HIPAA rulemaking, highlight the inefficiencies of decentralized cybersecurity across thousands of hospitals, and discuss how mergers can support under-resourced rural facilities. He also explores the rapid growth of generative AI in healthcare, emphasizes the need for responsible AI oversight and vendor accountability, and closes with career advice that prioritizes curiosity, thoughtfulness, and human connection over credentials.Tune in to hear Chris Plummer break down the real challenges healthcare organizations face and why curiosity and connection might be your most significant assets!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

A strong security posture requires trust between IT, clinicians, and patients, emphasizing the importance of collaboration and culture over solely technical solutions. In this episode, Bill Laukaitis emphasizes the importance of digital empathy, listening to clinical staff, and providing options rather than prescriptive solutions. He highlights the significance of process discovery, documentation, and the Capability Maturity Model Integration (CMMI) for achieving a proactive security approach. Bill also touches on the ethical use of AI, dynamic risk-scoring models, and the critical nature of third-party vendor management in healthcare. Ultimately, he advocates for a community-driven approach to risk management and data protection. Tune in and learn how to build a culture of security that supports both patient safety and efficient workflows!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

How can organizations manage third-party cybersecurity risks, secure executive buy-in, and improve security communication?In this episode, Jeffrey Wheatman discusses how Black Kite helps organizations identify cybersecurity threats in their supply chain and emphasizes the need for clearer ownership of third-party risk, a shift toward collaborative security approaches, and improved communication between security leaders and executives. He also highlights challenges such as securing funding for cybersecurity, the growing over-reliance on technology, and the ongoing struggle for security professionals to effectively engage decision-makers rather than repeating the same conversations within their circles.Tune in for eye-opening insights on tackling one of the toughest security challenges, shifting industry mindsets, and making cybersecurity a business priority!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

GRC (Governance, Risk Management, and Compliance) is evolving, requiring practitioners to have both technical and business acumen.In this episode, Ainhoa Iglesias-Diaz highlights the importance of a broad background to understand technical and business security aspects, enabling effective communication and collaboration. Ainhoa emphasizes the criticality of third-party risk management, advocating for a lifecycle approach that monitors vendors beyond onboarding. She also stresses the significance of security awareness training to mitigate insider threats and promote a culture of reporting suspicious activities without fear. Tune in to gain insights into the evolving role of GRC in healthcare and learn how a diverse background can lead to success!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

How can healthcare organizations balance tightening cybersecurity regulations with limited resources and still protect patient data effectively?In this episode, Carter Groome discusses how his company has evolved from an electronic health record optimization firm to a healthcare security, privacy, and risk management consultancy. He and host Ed Gaudet explore the challenges of improving cybersecurity in healthcare, focusing on the strain on rural hospitals and the potential regulatory burdens from proposed HIPAA updates, while emphasizing the importance of balancing effective cybersecurity measures with financial viability.Tune in to hear expert insights on the evolving landscape of healthcare cybersecurity and how organizations can navigate new challenges to safeguard patient safety!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

The cybersecurity landscape is constantly shifting and requires continuous education.In this episode, Will Conaway shares invaluable lessons learned from a career spanning executive roles at major healthcare systems to leadership positions in the technology sector. He emphasizes the critical importance of understanding and solving client pain points, predicting industry trends, and crafting implementable strategies. He also highlights the significance of cybersecurity as an indicator of organizational maturity and offers advice to aspiring IT professionals, urging them to embrace continuous learning and personal reinvention. Tune in to gain insights into navigating the complexities of healthcare IT and learn how to drive meaningful change while staying true to a greater purpose!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

Effective communication is crucial for bridging the gap between cybersecurity and business operations, especially in healthcare. In this episode, Ashley Gelisse discusses the challenges of communicating cybersecurity risks to business leaders in healthcare organizations. Ashley highlights the importance of tailoring language and messaging to resonate with the audience, whether technical practitioners or executive leaders. She also emphasizes the significance of creating "tentacles" throughout the organization to foster better communication and collaboration.. Finally, Ashley advises young IT professionals to start small, build incrementally, and continuously refine their approach based on feedback and results. Tune in and learn how organizational change management fosters collaboration to secure patient data across multiple hospital systems!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this discussion, Sam Khan, a healthcare attorney and board advisor for HoundDog.ai, shares insights on the evolving landscape of AI governance in healthcare. He emphasizes the need for comprehensive risk assessments that address AI-specific vulnerabilities. Sam stresses the importance of collaboration between IT leaders and physicians for effective cybersecurity. Young professionals are encouraged to pursue certifications and build networks for career growth. Tune in to learn how specialized training and oversight can help manage AI adoption risks!

A deep understanding of healthcare comes from experiencing it as a patient, a caregiver, and a professional within the industry.In this episode, Andrea Daugherty shares her predictions for the healthcare industry in 2025, noting expected shifts in policy, and highlights that healthcare organizations should prioritize strengthening their core infrastructure before adding new, advanced technologies.Tune in and learn how to leverage vendor insights and create cohesive, collaborative groups of end users to ensure comprehensive and effective solutions within healthcare organizations!For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.Music by David Cosgrove an accomplished composer, musician, producer, and engineer. Listen to his latest project Del Piombo. Learn more about your ad choices. Visit megaphone.fm/adchoices