Thinking about moving your EHR, imaging systems, or analytics to the cloud? In this episode, Will Evertsen walks you through:

• Migration models & benefits (public, private, hybrid)

• Top risks—from misconfigurations and shared-responsibility gaps to data residency and cost sprawl

• Secure migration guardrails—identity & access management, encryption & key control, network isolation, and infrastructure-as-code

• Optimizing cloud ops—continuous monitoring, cost governance, and automated disaster-recovery drills

MEDTECH MINUTE STORIES:

https://www.medicaleconomics.com/view/57-of-patients-say-yes-to-ai-in-the-exam-room-if-it-means-more-time-with-their-doctor

https://www.healthcareitnews.com/news/northwell-deploys-new-safety-and-security-tech-motorola

https://insights.citeline.com/medtech-insight/digital-technologies/cybersecurity/fda-publishes-final-cybersecurity-guidance-to-replace-final-cybersecurity-guidance-IHPBWNQ6V5E3TCIKCIOJE6HDZA/

Insider threats, ranging from malicious employees to well-meaning staff mistakes and compromised credentials, pose a significant risk to healthcare data. In this episode, we unpack:

• Types of Insider Threats: Malicious, negligent, and credential-based actors

• Prevention Tactics: Least‐privilege access, separation of duties, MFA, and endpoint hardening

• Detection & Monitoring: Behavior analytics, SIEM + DLP integration, and audit‐ready logs

• Response & Investigation: Insider‐threat playbooks, forensic collection, legal/HR coordination, and breach reporting criteria

• Building a Security Culture: Targeted drills, clear reporting channels, and positive reinforcement programs

MEDTECH MINUTE STORIES:

https://www.healthcareitnews.com/news/mclaren-notifies-743k-patients-about-data-breach

https://www.medtechdive.com/news/fda-stops-olympus-device-imports/751568/

https://healthtechmagazine.net/article/2025/06/exploitation-trends-underscore-need-layered-cybersecurity-healthcare

Telehealth isn’t just convenient—it’s a new attack surface for ePHI. In this episode, we'll walk through the end-to-end security controls every virtual care program needs:

• Choosing a fully HIPAA-compliant platform with end-to-end encryption and a solid BAA

• Strong patient authentication with identity proofing and multi-factor requirements

• Secure handling of session recordings, transcripts, and chat logs—encrypted at rest and in transit

• Staff training on private-session etiquette and quarterly security drills

• Building a telehealth-specific incident response playbook and real-time monitoring rules

MEDTECH MINUTE STORIES

https://www.hipaajournal.com/episource-data-breach/

https://www.bioworld.com/articles/721324-alphadesign-ai-creating-proteins-from-scratch

https://www.healthcareitnews.com/news/umass-inks-deal-begin-evaluating-health-ai-products