Healthcare System Cybersecurity Response: Experiences and ...
43
Unclassified//For Public Use TRACIE HEALTHCARE EMERGENCY PREPAREDNESS IN FORMATION GATEWAY ASPR ASS I STANT SEC RE TA RY F OR PR EPAREDNESS AND RESPONS E Healthcare System Cybersecurity Response: Experiences and Considerations March 18, 2021 Unclassified//For Public Use Access this webinar here: https://attendee.gotowebinar.com/ recording/2999617667872996111 Access speaker bios here: https://files.asprtracie.hhs.gov/ documents/healthcare-cybersecurity-response-webinar-bios.pdf Access the transcript here: https://files.asprtracie.hhs.gov/ documents/healthcare-system-cybersecurity-response--experiences- and-considerations-transcript.pdf
Transcript of Healthcare System Cybersecurity Response: Experiences and ...
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Healthcare System Cybersecurity Response Experiences and Considerations
March 18 2021
UnclassifiedFor Public Use
Access this webinar here httpsattendeegotowebinarcomrecording2999617667872996111
Access speaker bios here httpsfilesasprtraciehhsgovdocumentshealthcare-cybersecurity-response-webinar-biospdf
Access the transcript here httpsfilesasprtraciehhsgovdocumentshealthcare-system-cybersecurity-response--experiences-and-considerations-transcriptpdf
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The opinions expressed in this presentation and on the following slides by non-federal government employees are solely those of the presenter and not necessarily those of the US Government The
accuracy or reliability of the information provided is the opinion of the individual organization or presenter represented
2
UnclassifiedFor Public Use
llirL TECHNICAL IIPr RESOURCE$
__II_ ASS ISTANCE CENTER
J ~ INFORMATION ~ EXCHANGE
asprtraciehhsgov
1-844-5-TRACIE
bull askasprtraciehhsgov
ASPR AhlSTANT bulllCUUamp~ ~00
UIPAUD-111 ~lltD UHO~H KpoundUTHCdl h oUGpound NCY PUhHONpound~~
INfOR MATIO N GAllWAT
ASPR TRACIE Three Domains
bull Self-service collection of audience-tailored materials bull Subject-specific SME-reviewed ldquoTopic Collectionsrdquo bull Unpublished and SME peer-reviewed materials
highlighting real-life tools and experiences
bull Personalized support and responses to requests forinformation and technical assistance
bull Accessible by toll-free number (1844-5-TRACIE)email (askasprtraciehhsgov) or web form (ASPRtraciehhsgov)
bull Area for password-protected discussion amongvetted users in near real-time
bull Ability to support chats and the peer-to-peerexchange of user-developed templates plans andother materials
3
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Acknowledgements bull Nebraska Medicine
ndash Lisa Bazis MS ndash Brian Fox MBA PMP ndash Marc Ferguson MBA MCSM AFBCI CBCP ndash Shelly Schwedhelm MSN RN NEA-BC ndash Dawn Straub MSN RN NEA-BC
bull MedStar Health ndash Craig DeAtley PA-C
bull ASPR TRACIE Partners and SMEs
4
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Laura Wolf PhD Director Division of Critical Infrastructure Protection HHS ASPR
UnclassifiedFor Public Use
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The opinions expressed in this presentation and on the following slides by non-federal government employees are solely those of the presenter and not necessarily those of the US Government The
accuracy or reliability of the information provided is the opinion of the individual organization or presenter represented
2
UnclassifiedFor Public Use
llirL TECHNICAL IIPr RESOURCE$
__II_ ASS ISTANCE CENTER
J ~ INFORMATION ~ EXCHANGE
asprtraciehhsgov
1-844-5-TRACIE
bull askasprtraciehhsgov
ASPR AhlSTANT bulllCUUamp~ ~00
UIPAUD-111 ~lltD UHO~H KpoundUTHCdl h oUGpound NCY PUhHONpound~~
INfOR MATIO N GAllWAT
ASPR TRACIE Three Domains
bull Self-service collection of audience-tailored materials bull Subject-specific SME-reviewed ldquoTopic Collectionsrdquo bull Unpublished and SME peer-reviewed materials
highlighting real-life tools and experiences
bull Personalized support and responses to requests forinformation and technical assistance
bull Accessible by toll-free number (1844-5-TRACIE)email (askasprtraciehhsgov) or web form (ASPRtraciehhsgov)
bull Area for password-protected discussion amongvetted users in near real-time
bull Ability to support chats and the peer-to-peerexchange of user-developed templates plans andother materials
3
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Acknowledgements bull Nebraska Medicine
ndash Lisa Bazis MS ndash Brian Fox MBA PMP ndash Marc Ferguson MBA MCSM AFBCI CBCP ndash Shelly Schwedhelm MSN RN NEA-BC ndash Dawn Straub MSN RN NEA-BC
bull MedStar Health ndash Craig DeAtley PA-C
bull ASPR TRACIE Partners and SMEs
4
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Laura Wolf PhD Director Division of Critical Infrastructure Protection HHS ASPR
UnclassifiedFor Public Use
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
llirL TECHNICAL IIPr RESOURCE$
__II_ ASS ISTANCE CENTER
J ~ INFORMATION ~ EXCHANGE
asprtraciehhsgov
1-844-5-TRACIE
bull askasprtraciehhsgov
ASPR AhlSTANT bulllCUUamp~ ~00
UIPAUD-111 ~lltD UHO~H KpoundUTHCdl h oUGpound NCY PUhHONpound~~
INfOR MATIO N GAllWAT
ASPR TRACIE Three Domains
bull Self-service collection of audience-tailored materials bull Subject-specific SME-reviewed ldquoTopic Collectionsrdquo bull Unpublished and SME peer-reviewed materials
highlighting real-life tools and experiences
bull Personalized support and responses to requests forinformation and technical assistance
bull Accessible by toll-free number (1844-5-TRACIE)email (askasprtraciehhsgov) or web form (ASPRtraciehhsgov)
bull Area for password-protected discussion amongvetted users in near real-time
bull Ability to support chats and the peer-to-peerexchange of user-developed templates plans andother materials
3
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Acknowledgements bull Nebraska Medicine
ndash Lisa Bazis MS ndash Brian Fox MBA PMP ndash Marc Ferguson MBA MCSM AFBCI CBCP ndash Shelly Schwedhelm MSN RN NEA-BC ndash Dawn Straub MSN RN NEA-BC
bull MedStar Health ndash Craig DeAtley PA-C
bull ASPR TRACIE Partners and SMEs
4
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Laura Wolf PhD Director Division of Critical Infrastructure Protection HHS ASPR
UnclassifiedFor Public Use
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Acknowledgements bull Nebraska Medicine
ndash Lisa Bazis MS ndash Brian Fox MBA PMP ndash Marc Ferguson MBA MCSM AFBCI CBCP ndash Shelly Schwedhelm MSN RN NEA-BC ndash Dawn Straub MSN RN NEA-BC
bull MedStar Health ndash Craig DeAtley PA-C
bull ASPR TRACIE Partners and SMEs
4
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Laura Wolf PhD Director Division of Critical Infrastructure Protection HHS ASPR
UnclassifiedFor Public Use
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Laura Wolf PhD Director Division of Critical Infrastructure Protection HHS ASPR
UnclassifiedFor Public Use
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Moderator John Hick MD Hennepin Healthcare
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Setting the Stage bull Focus on effects of cyber incidents on the healthcare
operational environment specifically ndash Ability to effectively care for patients ndash Maintaining business practices ndash Ensuring readiness and recovery
bull Cyberattacks were identified as top threat in healthcare system Hazard Vulnerability Analyses (HVAs)
bull Lessons learned and best practices should be shared across the health sector to improve preparedness and response efforts
7
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Select Cybersecurity Resources bull
ndashASPR TRACIE
Cybersecurity Topic Collection Exchange Issue 2 Cybersecurity and Cyber Hygiene Cybersecurity and Healthcare Facilities Video Healthcare System Cybersecurity Readiness and Response Considerations and accompanying Overview Presentation
ndashndashndash
bull ndash
ASPR ASPR Critical Infrastructure Protection Health Sector Cybersecurity Coordination Center (HC3) Joint HPH Cybersecurity Working Group405(d) Program
ndashndash
8
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Craig DeAtley PA-C Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
UnclassifiedFor Public Use
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Opening Thoughts bull IT CAN HAPPEN TO YOU bull It should be on everyonersquos HVA bull A planning committee is an important starting point
ndash Multidisciplinary representation ndash External partnersvendors ndash System representation on a facility committee and vice
versa are critical to success on both sides ndash Meet regularly ndash Take notes
10
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
At the Start bull Spend some time learning about past attacks
ndash What happened and how ndash Do those vulnerabilities relate to your facilityorganization ndash What lessons learned pertain to you
bull The Incident Response Plan should be comprehensive and notjust a compendium of individual downtime practices ndash Alert notificationauthorities ndash Incident Management Team ndash Business ContinuityBusiness Impact Analysis
bull Understand what will be enterprise-wide practicedecision versus local practiceopportunity for planning and response
11
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Critical Preparedness Next Steps bull Maintain a list of all of your applications
ndash Ensure new applications are added and they include downtime procedure and recovery steps
ndash This includes biomedical equipment phones infrastructure controls
ndash Keep back up copies bull Ensure that you understand how each application relates to one
another ndash If you have links with external partners (eg HCC) keep them
current ndash Make sure updates patches etc are done on a timely basis
12
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
More Points on Preparedness bull Consider an external audit committee to assist with
planning input and guidance bull Establish a priority restoration plan ndash canrsquot bring them all
back at once bull Donrsquot focus just on clinical impact of an outage
ndash Gift shop parking security cafeteria HR payroll etc ndash Revenue cycle impact
bull Practice Practice Practice ndash But how
13
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Important Response Steps bull Have a clear problem reporting process bull Have clarity on definitions and who has authority to initiate
the plan(s) and escalation procedures bull Duplication of alerting systems is important bull Consider having ldquoGo Bagsrdquo containing critical items (eg
plans forms checklists etc)
14
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider bull Communication will be critical ndash how can it best be done bull 247 IMT staffing and Unitoffice downtime expertise will be
needed along with Just-in-Time Training bull Address written record security and archiving bull Can we still provide high quality and safe patient care bull Share updated work aroundssituational awareness for
each shift
15
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Additional Response Steps to Consider conrsquot bull What about the Health Information Exchange ndash can it be
accessed and used bull Redeploy staff to needed areas
ndash Pharmacists to busy units ndash Staff who canrsquot otherwise do their job ndash runners scribes
bull Work from home is an option bull Safety officer(s) security officers trainers roving
16
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery is Vital too bull Planning for it starts early bull Dedicate staff to planning and executing this phase bull What are vendors doing bull Implement the restoration priority list ndash and prepare for
issues bull Communicate communicate communicate bull Data entry will be tedious tiring and labor intensive
17
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Finallyhellip bull Some data maynot be reconcilable bull Some IT applications maynot become non-recoverable
ndash More likely when they are not part of the planning and recovery effort
bull Financial implications should be expected so record them ndash from the outset and work with insurance company to address
bull Public messaging will be important all along ndash but what can be said and who should say it may not be as easy as you think
bull Effective communications (not just the plan) is important
18
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Dawn Straub MSN RN NEA-BC Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
Management Cycle
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Operational Perspective
FEMA Emergency Management Cycle
20
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - The Mindset
bull The question is not ldquoifrdquo this will happen but ldquowhenrdquohellip
bull Cyber hygiene is a patient safety goal
21
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
Prepare - HICS Training
22
[
[
[
Resources
Structure
Communication
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Resources
ALL departments must have business continuity plans bull Downtime preparedness checklist bull Systematic on-going teams and preparedness processes bull Channels for approval and updates bull Drill drill drill
23
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH h oUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfOR MATIO N GAllWAT
PPe repaa re e
Go Bag Validate that your unit ldquoGo Bagsrdquo are ready
Unit ldquoGo Bagrdquo Contents FlashlightsHeadlamps- check batteries White stickers with unit name on them (eg 6West) Unit evacuation plan Unit smoke compartment map Unit severe weather plan Unit fireevacuation plan Both Severe Weather Checklists (Lead RN and RN-Clerk Tech-need several copies) Pens paper clipboards Red Yellow Green arm bands (only use when you need to leave the floor via the stairwells) Unit supplies (eg masks basins tape gloves etc)
Review the checklists with Lead(s) amp Staff Pull out the medsled and practice Check flashlights and headlights and CHANGE BATTERIES Participate in drill(s) Wed March 28th ndash 1000 amp 2000 Provide feedback via electronic drill survey
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Prepare - Forms
Storage bull Where bull Access bull Format
Use bull Quick
Tutorials bull Examples bull Organize
Process bull Paper
Workflows bull Business
ContinuityPlans
25
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
Response - Implement
HICS bull Define critical
services ndash Systems affected ndash Length of
downtime bull Clinical Promising
Practices ndash pg 22
26
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Implement
Communicate communicate communicate bull Consider informatics team to assist with translation of
clinicaloperational staff and IT staff bull Use structure to assist with internal messaging bull Assign specific resources to external communication
27
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Response - Workforce All hands on deck bull Assign leaders with calm cool approach bull Consider unitdepartment deployment for lab pharmacy
coders bull At the elbow assistance on units bull Those who cannot work can be helpful elsewhere
ndash Runners
28
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Recovery Communicate communicate communicate bull Marathon bull Dimmer Switch Approach
Downtime Data Re-entry Transition
off Paper Data Catch Up System
Restored
29
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Mitigation
bull What happened bull What went well bull Challenges
After Action Reports
bull Generate solutions for challenges
bull Reinforce best practices
Lessons Learned bull Incorporate into
practice andpolicy
bull Disseminate and drill
Preparation
30
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
TRACIE HEALTHCARE EMERGENCY PREPAREDNESS
IN FORMATION GATEWAY
ASPR ASS I STA N T SEC RE TA RY F OR
PR EPAREDNESS AND RESPONS E
Lisa Bazis MS Chief Information Security Officer Nebraska Medicine
UnclassifiedFor Public Use
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
Cyber Security ndash Not just an IT issue
Board Of Directors 32
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
--
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Trust Accountability Empowerment
33
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Digital bull Know Resilience
bull Understand
bull Learn bull Recover
34
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Environment
bull People bull Process bull Technology
Data
bull Confidentiality bull Integrity bull Availability
Safety bull Prevent bull Detect bull Respond
35
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
0
WRECOVERY ESI I NCE CONTINGENCY
BUS N ss 0r~1G INCIP E~T co NTIN UITY
ROCEDURES Rmiddot I smiddotmiddotI Kmiddotmiddotmiddot 00 G 1 middotTio ffi AN ~ PREPARATION t ex ltt C tn z -ct C
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpoundNCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMATION GAllWAT
36
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Build Business Continuity
bull ApplicationSystem Inventory amp Interconnections ndash Know the technical amp business owners
bull Application Business Value Rating (ABVR) bull DrillsExercisesDowntimes
37
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
How to Handle the Fire
bull Protect bull Detect bull Suppress bull Contain bull Restore
38
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
( ] [b[--]
[b[--] [b[--]
[b[--] ~-----
ASPR TRAC IE AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
The Digital Journey Identity
Device
Network
Application
ServerSystem
DataStorage
39
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
GAP
I I I I Key steps to bridge gap
Current State bullbull --------bull Desired State + Action Plan
-ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Create the Gap Assessment
40
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use
Positive Outcomes
Board Of Directors 4141
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Question amp Answer
42
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
UnclassifiedFor Public Use -ASPR AhlSTANT bulllCatUbull~ ~obull KpoundUTHCAH hoUGpound NCY PUhHONpound~~ UIPAUD-111 ~lltD UHO~H INfORMAT ION GAllWAT
Contact Us
asprtraciehhsgov 1-844-5-TRACIE askasprtraciehhsgov
43
- Developing a Healthcare Coalition Pediatric Surge Annex
- Slide Number 2
- ASPR TRACIE Three Domains
- Acknowledgements
- Laura Wolf PhD13Director Division of Critical Infrastructure Protection HHS ASPR13
- Moderator John Hick MD13Hennepin Healthcare13
- Setting the Stage
- Select Cybersecurity Resources
- Craig DeAtley PA-C13Director Institute for Public Health Emergency Readiness MedStar Washington Hospital Center
- Opening Thoughts
- At the Start
- Critical Preparedness Next Steps
- More Points on Preparedness
- Important Response Steps
- Additional Response Steps to Consider
- Additional Response Steps to Consider conrsquot
- Recovery is Vital too
- Finallyhellip
- Dawn Straub MSN RN NEA-BC13Executive Director Nursing Professional Practice amp Informatics Nebraska Medicine13
- Operational Perspective
- Prepare - The Mindset
- Prepare - HICS Training
- Prepare - Resources
- Prepare
- Prepare - Forms
- Response - Implement
- Response - Implement
- Response - Workforce
- Recovery
- Mitigation
- Lisa Bazis MS13Chief Information Security Officer Nebraska Medicine13
- Cyber Security ndash Not just an IT issue
- Trust + accountability = empowerment
- Digital resilience
- Safety data environment
- Business continuity
- How to Build Business Continuity
- How to Handle the Fire
- The Digital Journey
- Create the Gap Assessment
- Positive Outcomes
- Question amp Answer
- Contact Us
-
