Most incident response plans aren’t tested until it’s too late. This episode walks through what “ready” actually looks like in healthcare: knowing where PHI lives, keeping your Security Risk Analysis current, setting clear roles, and practicing real scenarios so teams don’t freeze when it matters.
We cover fast detection, clean containment, and smart recovery, plus the pieces that often get missed. If your plan is on paper but not practiced, this will help you turn it into something usable.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #IncidentResponse
Your organization doesn’t operate alone—and neither does your risk.
In this episode, we look at how vendors, business associates, and service providers can quietly impact your HIPAA compliance and security. From overlooked contracts to outdated risk reviews, even trusted partners can become weak links if they’re not managed well.
Hear what good vendor oversight actually looks like, how to make it part of your Security Risk Analysis, and why accountability can’t be outsourced when it comes to protecting patient data.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #VendorRiskManagement
The Security Risk Analysis isn’t just another compliance task. It’s the foundation of your HIPAA program and the proof that you’re protecting patient data.
In this episode, hear why now—not January—is the time to get it done. Recent OCR fines show that organizations of every size are still being penalized for missing or outdated SRAs. Waiting costs more in money, reputation, and trust.
This episode breaks down what the SRA actually does, how it shapes your risk management plan, and why it’s the single most important compliance step to finish before the year ends.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
Enforcement is active, policy is tightening, and threats continue to evolve. This episode looks ahead to what 2026 will bring for healthcare compliance—how recent OCR settlements, proposed HIPAA Security Rule updates, and CMS’s 2026 payment rule all point to one clear expectation.
Hear what strong compliance looks like going forward, from mapping ePHI and managing vendors to building steady routines that keep documentation current and defensible.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
Bruce Gray joins the Medcurity Podcast to share insights from more than 20 years leading the Northwest Regional Primary Care Association (NWRPCA).
He’s joined by Joe Gellatly, CEO of Medcurity, for a conversation on the unique challenges and strengths of rural healthcare and community health centers, the future of care delivery, and how a team-based approach is reshaping connections across the system. Bruce also reflects on what it takes to embrace change, using AI and smarter workflows to bring care back to a more personal, individualized level.
If you’re planning to attend the upcoming NWRPCA Spokane event, let us know. We’re hosting an afterparty and would love to connect!
Connect with Bruce on LinkedIn: https://www.linkedin.com/in/bruce-gray-a596bb9/
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #Podcast #NWRPCA
Madelaine Yue joins the Medcurity Podcast for a great discussion on AI and human collaboration, healthcare transformation, and strategic data optimization.
As a Transformation Architect, Madelaine partners with healthcare executives to navigate the complex healthcare landscape, turning their bold visions into life-saving impact. Through blending data, human behavior, and strategic planning, she empowers executives to secure their legacy, igniting engagement and fostering organizational change that lasts. Her approach enables organizations to conquer healthcare delivery challenges, thus ensuring patients receive efficient, cost-effective, and high-quality care.
Connect with Madelaine Yue on LinkedIn: https://www.linkedin.com/in/madelaineyue/
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #AIinHealthcare #AI #Podcast #HIT #Healthcare
A ransomware incident. A settlement. And a clear message from OCR: when the basics are missing, enforcement follows.
This episode zeroes in on the expectation that applies to everyone. Providers, health plans, and vendors alike are expected to keep a current Security Risk Analysis and act on what it finds.
Hear what “current” looks like in real operations, how CMS policy signals point to ongoing risk management, and the simple habits that turn analysis into proof.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
The final months of the year move quickly, and compliance tasks often get left to the last minute.
In this episode, we walk through five steps that can keep your organization ahead. Each one builds a stronger foundation for compliance and reduces the chance of scrambling when the new year begins.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
CMS (Centers for Medicare & Medicaid Services) has released the Fiscal Year 2026 Final Rule for hospital and long-term care payments, and it brings important updates for quality reporting, interoperability, and compliance.
Learn what’s changing, from the end of the low wage index hospital policy to adjustments in reporting programs, and new expectations under the Promoting Interoperability Program. We’ll also highlight why the Security Risk Analysis is taking on an even more central role.
Whether you’re directly affected or just want to understand where policy is headed, this episode offers a clear look at the changes and how hospitals can prepare.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #Medicare #Medicaid #CMS
In a recent case, a ransomware attack revealed long-standing gaps that led to a $250,000 settlement.
OCR’s recent action shows how overlooked requirements, like a Security Risk Analysis and timely breach notifications, turn an attack into enforcement. In this episode, we walk through the case, what regulators found, and the practical steps every healthcare organization can take to avoid the same outcome.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #OCR #Ransomware
In this episode, Joe Gellatly and Daniel Schwartz discuss today’s most pressing security challenges—including zero trust, ransomware evolution, data loss prevention, and the risks tied to AI-powered “fast fashion” software.
They share what teams can do now to stay secure without waiting for regulations to catch up.
Connect with Daniel Schwartz on LinkedIn: https://www.linkedin.com/in/daniel-schwartz-cybersecurity/
Learn more about Medcurity: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #ZeroTrust #Ransomware #DataLossPrevention #AIinHealthcare #MFA #PHISecurity
In this episode, Jennifer Oelenberger, President of EHR Concepts, joins us to share the MIPS 2025 framework in plain language—along with strategies to improve category scores, avoid common pitfalls, and make MIPS part of your everyday workflow.
Learn more about Medcurity: https://medcurity.com
Visit EHR Concepts: https://ehrconcepts.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #RiskManagement #MIPS
In this episode, we talk about Network Vulnerability Assessments (NVAs)—how they pinpoint weaknesses like open ports and unsafe accounts before attackers can exploit them, and why they’re key to shutting down easy entry points.
We also walk through Medcurity’s new NVA Dashboard, now live in the platform. Instead of static PDFs, you get a real-time, interactive view of what needs attention, why it matters, and how to fix it. And with our Advanced NVA, you can go deeper with Attack Path Visualization, Active Directory Security Configuration Analysis, and a HIPAA Group Policy Assessment. Listen in to see how it works and how it can streamline your security efforts.
Learn more about Medcurity and what we do here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #NVA #RiskManagement
Smart fridges, fitness trackers, fish-tank thermometers—everything is online, and every connection is a doorway. As threat actors race ahead, cybersecurity and privacy for everyday technology lags behind.
Bidemi “Bid” Ologunde, a highly respected cybercrime and threat-intelligence specialist, shows how privacy erodes when data-hungry apps and IoT gadgets multiply, why security standards trail technology by years, and what ransomware-hit casinos and sluggish HIPAA updates have in common. The focus: reduce the attack surface, question every connection, and build everyday routines that keep pace with fast-moving threats.
Connect with Bid at https://www.linkedin.com/in/bidemiologunde/
Learn more about Medcurity: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #IoTSecurity #PrivacyByDesign #PHISecurity
The domain looks right. The logo checks out. Even the login page feels familiar. But it isn’t what it seems.
Attackers are using subtle domain tricks—like typos, lookalike characters, and spoofed subdomains—to mimic trusted names in healthcare. These aren’t high-tech hacks. They rely on speed, habit, and trust.
Once you know what to watch for, they’re easier to stop. Listen to the latest Medcurity Podcast for real examples and smart ways to stay ahead.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
Documentation isn’t enough anymore.
“Reasonable and appropriate” has always been HIPAA’s standard—but that standard is shifting. In this episode, we break down how OCR is interpreting those words today, where organizations are getting into trouble, and what it actually takes to meet expectations now.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #OCR #HealthcareIT #RiskManagement
AI can’t fix a broken process—it only makes it more visible.
In this episode, Ghazenfer Mansoor, CEO of Technology Rivers, shares how healthcare teams can set the right foundation before bringing AI into the mix. From workflow design to HIPAA compliance, he breaks down what it really takes to use AI well—and why security has to come first.
Connect with Ghazenfer Mansoor at https://www.linkedin.com/in/gmansoor/
Learn more: https://technologyrivers.com | https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #AIinHealthcare #HealthcareInnovation #PHISecurity
AI is transforming healthcare—not just by improving efficiency, but by enhancing care itself. From earlier cancer detection to smarter workflows and expanded patient access, it’s changing how healthcare works for everyone.
In this episode, we talk with Dr. Sean Raj, Chief Innovation Officer at SimonMed Imaging. A nationally recognized leader in digital health, Dr. Raj has published widely and plays an active role in shaping innovation strategies across the industry.
We explore how AI is amplifying—not replacing—human expertise in radiology. And with SimonMed’s recent launch of Mammogram+, we look at how their growing AI-powered programs are setting a new pace for imaging.
Connect with Dr. Sean Raj at https://www.linkedin.com/in/seanraj/
Learn more: https://www.simonmed.com | https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #Radiology #HealthcareImaging
Shared workstations—especially in clinical areas—can be a blind spot in privacy and security. Whether it’s leaving PHI on the screen, shared login credentials, or lack of session timeouts, these seemingly small things can cause big issues.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis
What’s really driving breaches in healthcare?
This episode breaks down key stats from the 2025 Verizon Data Breach Investigations Report—including ransomware trends, human error patterns, and how attackers are moving faster than ever. We’ll highlight what it means for your organization and where to focus your efforts this year.
Learn more about Medcurity here: https://medcurity.com
#Healthcare #Cybersecurity #Compliance #HIPAA #SecurityRiskAnalysis #DBIR2025 #VerizonBreachReport #2025DBIR