68: Preparing for a cybersecurity incident, with Jeremy Maxwell
On today's episode, Hazel is back to chat to Jeremy Maxwell, CISO of Veradigm. Veradigm is a healthcare IT company providing electronic health record systems and other solutions to a variety of medical organizations. These organizations range from small physician practices all the way up to some of the world’s largest insurance and pharmaceutical companies. Serving roughly 10,000 customers in a highly regulated industry, security is critical for Veradigm’s success. Much is at stake when it comes to the confidentiality, integrity, and availability of patient information. In this chat, Jeremy talks about his personal journey into cybersecurity and his various roles leading up to his current position as CISO. He talks in detail about incident readiness, and how his team is structured to deal with security incidents. Jeremy has been partnered with Cisco Talos Incident Response for over 6 years now, and we’ve helped the organization put various response plans and scenarios together (and test them rigorously). Jeremy also describes a specific attack attempt that occurred at Veradigm, in which an attacker tried to gain access using spear phishing. This is a fascinating insight into the mentality of dealing with a high stakes, high pressure situation, and how the team came together to oust the attacker before anything was taken.