Report: Organ Transplant Data Security Needs Strengthening

September 8, 2022 Ben Denkers

Report: Organ Transplant Data Security Needs Strengthening

The national network for connecting medical centers with donated human organs faces doubts about its ability to secure data amid mounting concerns over its IT infrastructure.

The newest criticism comes from a federal watchdog review of the Health Resources and Services Administration and the nonprofit United Network of Organ Sharing. As of January, nearly 107,000 individuals were candidates on the Organ Procurement and Transplantation Network waitlist. OPTN is designated by the federal government as a "high-value asset."

UNOS, which manages its network at the administration's behest, lacked system monitoring and only had draft procedures for access controls when federal auditors conducted their review.

The OPTN "is a very 'just in time' system where the time between an organ becoming available and getting it into the right patient can be measured in days or even hours," says Benjamin Denkers, chief innovation officer at consultancy CynergisTek.

"Hackers breaching the system could create any number of disruptions to the system connecting available organs with patients in need."

A statement from an UNOS spokeswoman shared with Information Security Media Group notes that auditors concluded that "OPTN security controls 'protect the confidentiality, integrity, and availability of transplant data.'"

Publication of the watchdog report comes just days after the Health Resources and Services Administration disclosed an OPTN security compromise and just weeks after a bipartisan Senate report warned that UNOS lacks the know-how to modernize a fragile core IT network

Continue reading the full article here.

About the Author

Ben Denkers is the CIO at CynergisTek where he is responsible for supporting growth, ensuring effective and efficient service delivery, and achieving the highest levels of client and employee satisfaction for CynergisTek’s security, privacy and compliance services. Denkers has nearly 20 years of experience in information security and consulting that includes markets such as finance, automotive, energy, manufacturing, and healthcare. With the threat landscape changing daily, this breadth of experience provides a unique perspective to the industry specific risks organizations face. He has been recognized for building, training, and optimizing team productivity. His strong focus on providing the operating framework, training, and development, and decisive leadership has empowered his teams to achieve tremendous success and drive business growth.
Follow on Linkedin Visit Website More Content by Ben Denkers

Insights Center

Report: Organ Transplant Data Security Needs Strengthening

About the Author

Previous Article

Next Article

Report: Organ Transplant Data Security Needs Strengthening

About the Author

Previous Article

Next Article

Most Recent Articles

A host of cutting-edge technologies like A.I & nanomedicine contain the potential to revolutionize patient care, but federal authorities are warning medical practices to evaluate the associated risks.

Ben Denkers discusses the detrimental impact of cyber attacks on medical devices.

With a dearth of resources, the Office for Civil Rights is struggling with an overflowing caseload.

A new report by KLAS examines several such firms to determine who effectively assists in reducing risk, engages closely with clients, and exceeds expectations.

Dave Bailey, Vice President of Security Services discusses how Healthcare sector entities are a ripe target for social engineering schemes for an assortment of reasons

Dave Bailey Explains cyber insurance carriers are telling potential clients they must add specific security elements or they won’t be able to provide coverage or will have to charge a high rate.

Ben Denkers discusses healthcare's unique position when it comes to big tech.

Thirty-six cybersecurity-related merger and acquisition (M&A) deals were announced in May 2022.

Ben Denkers, CIO of CynergisTek discusses steps healthcare cybersecurity leaders can follow these four steps to improve their security posture in the face of cyberattacks.

Thomas Graham, Chief Information Security Officer for CynergisTek discusses healthcare workers and the current climate.

New guidance from the Cloud Security Alliance aims to support delivery organizations with assessing and managing cybersecurity risks to the healthcare supply chain.

Dave Bailey, Vice President of Security Services discusses developing and maintaining solid security practices.

In this episode, we discuss with Mac areas where our industry needs to do a better job of testing our controls and environment instead of completely trusting them to do what we think.

Mac McMillan discusses the speed in which cyber security is increasing.

Andrew Mahler discusses the existing challenges with HIPAA compliance and current state regulations will only compound further as regulating.

Mac McMillan discusses the FDA's new guidance and the progress we have made over the last decade in talking about and raising issues with medical device security.

Mac McMillan shared his perspectives on the potential for the Russian invasion of Ukraine to indirectly impact IT in the U.S. healthcare system, particularly with regard to supply chain.

Mac McMillan, CEO of CynergisTek discusses the possibility of cyberattacks beginning and how no one can tell for sure how wide the fallout could be.

Mac McMillan, CEO of CynergisTek discusses the possibility of cyberattacks beginning and how no one can tell for sure how wide the fallout might be.

KLAS named Medigate, Ordr, and Armis as top healthcare IoT security vendors, all of which can help organizations manage connected device security risks.