Security

Why Inventory Management Is a Key Element of Incident Response Planning

It’s vital for healthcare IT teams to know how systems and technologies are interconnected in the event of a cyberattack. That’s where asset management comes in.

Suchi Rudra

Suchi Rudra is a writer whose work has appeared in The New York Times, BBC and Vice, among other publications.

How does a health system securely track the status, location and ownership of its thousands of devices at any given moment? It’s a huge challenge, especially when budgets are tight and IT teams are overworked and under-resourced.

Beyond device lifecycle challenges, not knowing the status of digital assets makes it more difficult to manage incident response plans. To solve these challenges, healthcare organizations — especially independent, rural and community hospitals — need centralized inventory management systems, which can go a long way toward minimizing an organization’s cybersecurity risks.

“A comprehensive asset inventory enables IT and security teams to identify which systems may be affected in an attack in real time. This allows them to develop an incident response plan with the right priorities and contain threats before they spread,” says Doug Thompson, chief education architect and director of solutions engineering at Tanium. “Without clear asset visibility, even the best response plans can fall short, leading to data loss and extended recovery times.”

Click the banner below to read the recent CDW Cybersecurity Research Report.

Cross-functional coordination is key for healthcare organizations. Incident response planning should go hand in hand with asset management and should involve the IT team in addition to other stakeholders, such as the legal, communications and clinical departments. This ensures that nothing slips through the cracks during an incident.

Thompson recommends centralizing resources, expertise and strategies across a hospital or health system. “A whole-of-state approach also connects [organizations] with state and federal leaders, enabling collaboration through shared information, pooled resources and access to broader funding opportunities,” he says. This increases coordination and visibility, aligning tools and enhancing threat detection.

Conduct Device and Security Audits of Healthcare Devices

Even the best inventory management systems won’t be very useful “if you don’t actually audit stuff,” says Bill Loller, chief product officer at Incident IQ. He recommends that healthcare organizations conduct frequent audits.

These assessments — including regular audits and tabletop exercises — can help healthcare IT teams identify and reduce potential vulnerabilities in their digital ecosystems, even in a rapidly changing environment.

A robust security audit should include risk assessments, compliance audits, vulnerability assessments, penetration testing, process audits, policy reviews, incident response evaluations and information privacy reviews, Thompson says.

Support Understaffed Cybersecurity Teams With Expert Resources

Despite challenges such as IT staffing, tackling asset management isn’t something that can wait. One solution might be to contract with a managed security services provider that offers around-the-clock protection and scalable systems tailored to educational environments.

Another option: Hire a virtual CISO to get cybersecurity support on a temporary basis. “That gets you the expertise, and it helps with strategy and execution,” says Loller.

gorodenkoff/Getty Images