Saturday, July 11, 2026
EN FR
Admin
Beyond Assumption: Measuring Security Culture with the SANS Security Awareness Maturity Model in Healthcare
Compliance

Beyond Assumption: Measuring Security Culture with the SANS Security Awareness Maturity Model in Healthcare

Healthcare organizations often assume their workforce understands cybersecurity risks, but assumption is the enemy of effective risk management. The SANS Security Awareness Maturity Model provides a measurable, evidence-based framework to assess and improve organizational security culture—a critical control that HIPAA, HITRUST, and NIST CSF all recognize as foundational.

Jul 11, 2026 · 4 min read
Read Article

Latest Articles

99 articles
Reproductive Health Data Privacy After Dobbs: Legal Exposure and Risk Mitigation for Providers
Privacy

Reproductive Health Data Privacy After Dobbs: Legal Exposure and Risk Mitigation for Providers

The Supreme Court's Dobbs decision has fundamentally altered the legal landscape for reproductive health data, creating unprecedented privacy risks for healthcare organizations. This post provides actionable mitigation strategies grounded in HIPAA, HITRUST, and NIST frameworks to help CISOs and compliance officers protect sensitive patient information in an increasingly hostile regulatory environment.

Jul 9, 2026 5 min read
Shadow AI in Healthcare: How to Govern the Tools You Cannot See
AI Implementation

Shadow AI in Healthcare: How to Govern the Tools You Cannot See

Shadow AI—unauthorized artificial intelligence tools deployed by clinicians and staff—poses unprecedented governance and compliance risks. Learn how CISOs can build visibility, establish policy frameworks, and operationalize AI governance before shadow deployments compromise patient safety and regulatory standing.

Jul 7, 2026 5 min read