Healthcare struggles to recruit top cybersecurity pros
Skip to main content
MDHC_Logotype_white
Subscribe
  • My Account
  • Login
  • Subscribe
  • News
    • This Week's News
    • COVID-19
    • Providers
    • Insurance
    • Government
    • Finance
    • Technology
    • Safety & Quality
    • People
    • Regional News
    • Digital Edition
    • Profit up nearly 23% across U.S. community hospitals in 2019
      HHS freezes rule targeting community health centers' drug discounts
      Cerner names Erceg as new CFO
      metro_pavilion_i.jpg
      MetroHealth to launch new surgical residency program this summer
    • HCA launches joint venture to boost domestic PPE production
      Lilly: Drug can prevent COVID-19 illness in nursing homes
      Mobile labs take vaccine studies to diverse neighborhoods
      Biden to sign virus measures, requires mask use to travel
    • Medicare ACO participants fell in 2021
      Louisiana gets reports vaccine providers are discriminating
      'We know this is real': New clinics aid virus 'long-haulers'
      The Check Up: Trenda Ray
      The Check Up: Trenda Ray of the University of Arkansas for Medical Sciences
    • UnitedHealthcare operating earnings fall by $2 billion in Q4
      CMS approves rule forcing insurers to ease prior authorization
      COVID-19 still a big uncertainty for insurers in 2021
      Health insurers' outlook boosted after Dems' Georgia win
    • HHS freezes rule targeting community health centers' drug discounts
      Biden signs executive orders to reverse, pause Trump-era rules
      CMS finalizes blood-based colon cancer screening coverage
      As virus surges, states reporting shortages of vaccine
    • Providers await new HHS coronavirus grant reporting deadline
      Operation Warp Speed Dr. Moncef Slaoui, Pfizer Group President Angela Hwang, Moderna CEO Stephane Bancel, CVS Health Executive Vice President Karen Lynch and McKesson CEO Brian Tyler participate in a panel discussion on the COVID-19 vaccine.
      Hospitals, drug companies strive to stand out virtually at JPM
      Intermountain, Trinity, Memorial Hermann behind $300M private equity fund
      Operation Warp Speed to bump up McKesson's stock price
    • A man in a room with servers.
      Momentum grows to outsource hospital tech functions in 2021
      5 things to know about Google's $2.1B Fitbit acquisition
      Providence bets on machine-learning, consolidating data centers
      Mental health treatment was most common telehealth service during COVID
    • Mobile labs take vaccine studies to diverse neighborhoods
      As virus surges, states reporting shortages of vaccine
      Sticking to Mediterranean diet is good for the brain
      Chance of COVID-19 triage care looms over Arizona hospitals
    • Cerner names Erceg as new CFO
      Elizabeth Richter will serve as acting CMS administrator
      Providence names new chief financial officer
      Wisconsin's top health official departing for federal job
    • Midwest
    • Northeast
    • South
    • West
  • Insights
    • ACA 10 Years After
    • Best Practices
    • InDepth Special Reports
    • Innovations
    • The Affordable Care Act after 10 years
    • New care model helps primary-care practices treat obesity
      doctor with patient
      COVID-19 treatment protocol developed in the field helps patients recover
      Rachel Wyatt
      Project to curb pressure injuries in hospitals shows promise
      Yale New Haven's COVID-19 nurse-staffing model has long-term benefits
    • Michellene Davis
      Healthcare leadership lacks the racial diversity needed to reduce health disparities
      Dr. James Hildreth
      How medical education can help fight racism
      Modern Healthcare InDepth: Breaking the bias that impedes better healthcare
      Videos: Healthcare industry executives describe their encounters with racism
      Quotes from rebadged employees
      Outsourcing IT, revenue cycle takes toll on internal culture
    • A woman with a wearable sensor talking to her provider.
      Wearable sensors help diagnose heart rhythm problems in West Virginia
      self service station
      COVID-19 pushes patient expectations toward self-service
      Targeting high-risk cancer patients with genetics
      A nurse holds up a phone with a message to a family member saying surgery has started.
      Texting, tablets help hospitals keep family updated on patient care
  • Transformation
    • Patients
    • Operations
    • Care Delivery
    • Payment
    • Highmark Health inks six-year cloud, tech deal with Google
      Study: 1 in 5 patients report discrimination when getting healthcare
      HHS proposes changing HIPAA privacy rules
      Android health records app launches at 230 health systems
    • California hospitals prepare ethical protocol to prioritize lifesaving care
      Amazon, JPMorgan Chase, Berkshire Hathaway disband Haven
      Digital pathways poised to reshape healthcare continuum in 2021
      Healthcare was the hardest hit by supply shortages across all U.S. industries
    • A woman with a wearable sensor talking to her provider.
      Wearable sensors help diagnose heart rhythm problems in West Virginia
      New care model helps primary-care practices treat obesity
      How hospitals are building on COVID-19 telehealth momentum
      Researchers: Hospital price variation exacerbates health inequities
    • MedPAC votes to boost hospital payments, freeze or cut other providers
      Most Next Gen ACOs achieved bonuses in 2019
      Congress recalibrates Medicare Physician Fee Schedule after lobbying
      CMS approves rule to encourage value-based drug pricing
  • Data/Lists
    • Rankings/Lists
    • Interactive Databases
    • Data Points
    • Health Systems Financials
      Executive Compensation
      Physician Compensation
  • Op-Ed
    • Bold Moves
    • Breaking Bias
    • Commentaries
    • Letters
    • Vital Signs Blog
    • From the Editor
    • Wellstar CEO calls adapting for the pandemic her bold move
      Howard P. Kern
      Recognizing the value of telehealth in its infancy
      Dr. Stephen Markovich
      A bold move helped take him from family doctor to OhioHealth CEO
      Dr. Bruce Siegel
      Why taking a hospital not-for-profit was Dr. Bruce Siegel’s boldest move
    • Barry Ostrowsky
      Ending racism is a journey taken together; the starting point must be now
      Laura Lee Hall and Gary Puckrein
      Increased flu vaccination has never been more important for communities of color
      John Daniels Jr.
      Health equity: Making the journey from buzzword to reality
      Mark C. Clement and David Cook
      We all need to 'do something' to fight inequities and get healthcare right, for every patient, every time
    • Dr. Bruce Siegel
      By protecting the healthcare safety net, Biden can put us on the path to a stronger country
      Healing healthcare: some ideas for triage by the new Congress, administration
      Dr. Sachin H. Jain
      Medicare for All? The better route to universal coverage would be Medicare Advantage for All
      Connectivity: a social determinant of health that can exacerbate all the others
    • Letters: Eliminating bias in healthcare needs to be ‘deliberate and organic’
      Letters: Maybe dropping out of ACOs is a good thing for patients
      Letters: White House and Congress share blame for lack of national COVID strategy
      Letters: VA making strides to improve state veterans home inspections
    • Sponsored Content Provided By Optum
      How blockchain could ease frustration with the payment process
      Sponsored Content Provided By Optum
      Three steps to better data-sharing for payer and provider CIOs
      Sponsored Content Provided By Optum
      Reduce total cost of care: 6 reasons why providers and payers should tackle the challenge together
      Sponsored Content Provided By Optum
      Why CIOs went from back-office operators to mission-critical innovators
  • Awards
    • Award Programs
    • Nominate
    • Previous Award Programs
    • Other Award Programs
    • Best Places to Work in Healthcare Logo for Navigation
      Nominations Open - Best Places to Work in Healthcare
      Nominations Open - Health Care Hall of Fame
      Nominations Open - 50 Most Influential Clinical Executives
    • 100 Most Influential People
    • 50 Most Influential Clinical Executives
    • Best Places to Work in Healthcare
    • Health Care Hall of Fame
    • Healthcare Marketing Impact Awards
    • Top 25 Emerging Leaders
    • Top 25 Innovators
    • Top 25 Minority Leaders
    • Top 25 Women Leaders
    • Excellence in Nursing Awards
    • Design Awards
    • Top 25 COOs in Healthcare
    • 100 Top Hospitals
    • ACHE Awards
  • Events
    • Conferences
    • Galas
    • Webinars
    • COVID-19 Event Tracker
    • Leadership Symposium
    • Healthcare Transformation Summit
    • Women Leaders in Healthcare Conference
    • Workplace of the Future Conference
    • Strategic Marketing Conference
    • Social Determinants of Health Symposium
    • Best Places to Work Awards Gala
    • Health Care Hall of Fame Gala
    • Top 25 Minority Leaders Gala (2022)
    • Top 25 Women Leaders Gala
  • Listen
    • Podcast - Next Up
    • Podcast - Beyond the Byline
    • Sponsored Podcast - Healthcare Insider
    • Video Series - The Check Up
    • Sponsored Video Series - One on One
    • Carter Dredge
      Next Up Podcast: Ready, set, innovate! Innovation and disruption in healthcare
      Next Up Podcast: COVID-19, social determinants highlight health inequities — what next?
      Ceci Connolly
      Next Up Podcast: How to navigate the murky post-election waters
      Next Up Podcast: Saving Rural Health
    • An older man wearing a mask receiving a vaccine.
      Beyond the Byline: Verifying information on the chaotic COVID-19 vaccine rollout
      doctor burnout
      Beyond the Byline: How healthcare supply chain struggles contribute to employee burnout
      Beyond the Byline: Covering race and diversity in the healthcare industry
      Beyond the Byline: How telehealth utilization has impacted investor-owned company earnings
    • Leading intention promote diversity and inclusion
      Introducing Healthcare Insider Podcast
    • The Check Up: Chip Kahn
      The Check Up: Chip Kahn of the Federation of American Hospitals
      The Check Up: Trenda Ray
      The Check Up: Trenda Ray of the University of Arkansas for Medical Sciences
      The Check Up: Dr. Kenneth Davis
      The Check Up: Dr. Kenneth Davis of Mount Sinai Health System
      The Check Up: Dr. Thomas McGinn
      The Check Up: Dr. Thomas McGinn of CommonSpirit Health
    • Video: Ivana Naeymi Rad of Intelligent Medical Objects
  • MORE +
    • Advertise
    • Media Kit
    • Newsletters
    • Jobs
    • People on the Move
    • Reprints & Licensing
MENU
Breadcrumb
  1. Home
  2. Technology
October 24, 2015 01:00 AM

Healthcare struggles to recruit top cybersecurity pros

Joseph Conn
  • Tweet
  • Share
  • Share
  • Email
  • More
    Print

    Michael Minear, chief information officer of UC Davis Medical Center in Sacramento, Calif., has a talented security staff, and as a result, has suffered some consequences.

    “We had a team of five, and two of them got poached,” Minear said. “It took a year and a half to replace those two.” That's not an unusual experience.

    The market for cybersecurity workers is red hot and that's putting heat on the healthcare industry, which has lagged other industries in information-technology spending.

    But after a spate of massive cybersecurity attacks this year, the industry is scrambling to shore up its defenses. Its efforts, however, are hampered by stiffening competition for experienced cybersecurity professionals.

    “There is infinite demand” for experienced cybersecurity workers across many industries, said Dan Inbar, chairman of Homeland Security Research Corp., a Washington, D.C., consulting firm. “The supply is 10% of the demand—from the Defense Department to banks to cybersecurity companies.”

    Minear

    As a result, cybersecurity professionals are fetching a 9% pay premium over other IT workers, according to Burning Glass Technologies, a Boston-based human resources technology and support services provider.

    According to Burning Glass, there were nearly 50,000 job postings in 2014 for workers with a Certified Information Systems Security Profession (CISSP) designation, the primary credential in cybersecurity work, which requires a minimum of four to five years of field experience. But the number of openings represents three-fourths of all cyber pros with a CISSP designation, even though globally the number of CISSP designees has nearly doubled since 2010.

    “Saying you're going to fill those 50,000 jobs playing musical chairs with 65,000 people doesn't really work,” said Burning Glass CEO Matt Sigelman. Those CISSP jobs pay an average of $93,000 a year and carry an $18,000 premium over entry-level security positions that require the basic credential, Sigelman said. Healthcare cybersecurity specialists need to be familiar with technology as well as the federal Health Insurance Portability and Accountability Act, making an already-rare set of job skills even more scarce, Sigelman said.

    MH Takeaways

    The healthcare industry is creating ways to keep an eye on valuable personal and medical records as it struggles to hire cybersecurity personnel.

    Cybersecurity job postings are up 91% since 2010, with 238,000 such jobs listed in 2014, including 7,915 in healthcare and social assistance organizations, such as drug and alcohol abuse clinics, Sigelman said.

    Healthcare is one of the industries showing the greatest growth in cybersecurity job openings. (See chart.)

    The demand is, in part, a reaction. According to the official “wall of shame” federal website, since September 2009, there have been 1,345 breaches reported in which 500 or more patient records were involved. A total of 153.9 million health records have been exposed. That number approaches half of the U.S. population.

    Four out of the five largest breaches on the list were hacks, all of which occurred in 2015, accounting for 75% of all records exposed. The largest hack was reported by Anthem and involved a whopping 78 million records that affected not only members, but through reciprocal payment agreements, some members of every other Blues plan in the country as well.

    For educators and trainers in cybersecurity, that means business is booming.

    Publicly funded University of Maryland University College, an outgrowth of the University of Maryland, claims more than 8,000 students have enrolled in its 13 cybersecurity programs at the certificate, undergraduate and master's degree levels. Of those, 4,500 students have graduated since the program started in 2011, said Robert Ludwig, assistant vice president of media relations for the college.

    Last year was the first year they've actually seen graduates go out in the market, Ludwig said, but it's been tricky keeping track of where they're headed. He said an alumni roster of 2,000 graduates shows only about 2% seem to be employed in jobs that are clearly healthcare-related.

    Minear says the breaches have upped the ante.

    “I work in healthcare, but now I feel I work at the NSA,” he joked, referring to the National Security Agency, the top-secret Defense Department agency that specializes in cracking codes and electronic spying.

    After reading a 2008 article about a breach involving unencrypted backup tapes of records at another university healthcare organization with “a very good CIO,” Minear started on a path to “encrypt everything,” from data in motion to data at rest.

    “We've invested about $11 million in security technology over that six or seven years, and in our security plan, we have to spend $4 million to $8 million more,” Minear said.

    That funding will include combining cybersecurity monitoring operations at UC Davis and other UC Health campuses. The plan is to create a security operations center.

    SOCs, as they are called, enable cybersecurity personnel to watch over a number of organizations, just as teleradiology allows a single radiologist to perform imaging reads for multiple hospitals. This cuts costs and creates efficiencies, security experts say.

    Matt Eversole, chief operating officer of information technology at 23-hospital Mercy Health, said his health system is exploring a SOC.

    He expects in the next two years the system will need to double its cybersecurity workforce from 17 to 34.

    Eversole said his system, based in Cincinnati, recently lost its chief information security officer, who resigned to become a consultant.

    “It took me three months to recruit a replacement,” but that was about the time expected for a position of that level, he said. And the pay was within range.

    “We did pay higher, but not much higher,” he said.

    Letter
    to the
    Editor

    Send us a letter

    Have an opinion about this story? Click here to submit a Letter to the Editor, and we may publish it in print.

    Recommended for You
    Momentum grows to outsource hospital tech functions in 2021
    Momentum grows to outsource hospital tech functions in 2021
    5 things to know about Google's $2.1B Fitbit acquisition
    5 things to know about Google's $2.1B Fitbit acquisition
    Sponsored Content
    Get Free Newsletters

    Sign up for free enewsletters and alerts to receive breaking news and in-depth coverage of healthcare events and trends, as they happen, right to your inbox.

    Subscribe Today

    The weekly magazine, websites, research and databases provide a powerful and all-encompassing industry presence. We help you make informed business decisions and lead your organizations to success.

    Subscribe
    Connect with Us
    • LinkedIn
    • Twitter
    • Facebook
    • RSS
    • Instagram

    Stay Connected

    Join the conversation with Modern Healthcare through our social media pages

    MDHC_Logotype_white
    Contact Us

    (877) 812-1581

    Email us

     

    Resources
    • Contact Us
    • Advertise with Us
    • Ad Choices Ad Choices
    • Sitemap
    Editorial Dept
    • Submission Guidelines
    • Code of Ethics
    • Awards
    • About Us
    Legal
    • Terms and Conditions
    • Privacy Policy
    • Privacy Request
    Modern Healthcare
    Copyright © 1996-2021. Crain Communications, Inc. All Rights Reserved.
    • News
      • This Week's News
      • COVID-19
      • Providers
      • Insurance
      • Government
      • Finance
      • Technology
      • Safety & Quality
      • People
      • Regional News
        • Midwest
        • Northeast
        • South
        • West
      • Digital Edition
    • Insights
      • ACA 10 Years After
      • Best Practices
      • InDepth Special Reports
      • Innovations
    • Transformation
      • Patients
      • Operations
      • Care Delivery
      • Payment
    • Data/Lists
      • Rankings/Lists
      • Interactive Databases
      • Data Points
    • Op-Ed
      • Bold Moves
      • Breaking Bias
      • Commentaries
      • Letters
      • Vital Signs Blog
      • From the Editor
    • Awards
      • Award Programs
        • 100 Most Influential People
        • 50 Most Influential Clinical Executives
        • Best Places to Work in Healthcare
        • Health Care Hall of Fame
        • Healthcare Marketing Impact Awards
        • Top 25 Emerging Leaders
        • Top 25 Innovators
        • Top 25 Minority Leaders
        • Top 25 Women Leaders
      • Nominate
      • Previous Award Programs
        • Excellence in Nursing Awards
        • Design Awards
        • Top 25 COOs in Healthcare
      • Other Award Programs
        • 100 Top Hospitals
        • ACHE Awards
    • Events
      • Conferences
        • Leadership Symposium
        • Healthcare Transformation Summit
        • Women Leaders in Healthcare Conference
        • Workplace of the Future Conference
        • Strategic Marketing Conference
        • Social Determinants of Health Symposium
      • Galas
        • Best Places to Work Awards Gala
        • Health Care Hall of Fame Gala
        • Top 25 Minority Leaders Gala (2022)
        • Top 25 Women Leaders Gala
      • Webinars
      • COVID-19 Event Tracker
    • Listen
      • Podcast - Next Up
      • Podcast - Beyond the Byline
      • Sponsored Podcast - Healthcare Insider
      • Video Series - The Check Up
      • Sponsored Video Series - One on One
    • MORE +
      • Advertise
      • Media Kit
      • Newsletters
      • Jobs
      • People on the Move
      • Reprints & Licensing