Mac McMillan


Mac McMillan is CEO of CynergisTek, Inc., a top-ranked healthcare IT information security and privacy consulting firm. He is recognized as a HIMSS Fellow and former Chair of the HIMSS Privacy & Security Policy Task Force. McMillan brings nearly 40 years of combined intelligence, information security and consulting experience and has worked in the healthcare industry since his retirement from the federal government in 2000. McMillan is considered a thought leader in compliance, security and privacy issues in healthcare, and has been recognized as a top health information security influencer.



Presentation Details

Protect Your Organization From Cybersecurity Attacks

It is no surprise that the critical first step in fighting emerging and trending sophisticated cybersecurity attacks, such as phishing, malware and ransomware, is to provide organization-wide education and develop a culture of awareness. This presentation seeks to provide participants with the latest information on the threat landscape and incidents in healthcare to help them better inform their organization and their workforce members so ultimately they can keep patient data secured.

First, industry expert Mac McMillan will highlight why the world of healthcare has evolved to higher threat profile and address why now is the time for change. He will start by educating the audience on today’s most pressing and emerging cybersecurity threats, including recent and emerging trends in all forms of hacking and social engineering. The presentation will also discuss what the impact of these attacks is on the healthcare industry, sharing real-world examples of data breaches that were caused by cyber attacks of different varieties. McMillan will review how the cyber criminal was able to attack the user and/or system and then examine the immediate and long-term damage caused in order to reinforce why a new focus and approach is required.

Next McMillan will offer attendees proven best practices and expert guidance on how to avoid falling victim to phish attacks and how to create a culture of cybersecurity awareness at their organization. He will show examples of spoof emails to educate attendees with what to be looking for before they open and click a phishing email, and will walk through a detailed incident response strategy and practical steps for building such a response program. The presentation will offer guidance of how to change the culture and build an effective information security program. McMIllan will also look at some of the key HIPAA Privacy and Security considerations that are necessary and provide strategies that will help organizations be more effective at protecting sensitive data. The presentation will finish with additional resources available from industry associations, federal and other sources and useful tools to help educate workforce members, a successful deterrence and response strategy and a mature information security program.

Learning Objectives:

  • Explain the current cybersecurity landscape in healthcare, including recent and emerging trends in phishing specifically
  • Identify the risks posed to provider organizations by cyberattacks, and offer proven strategies for mitigating that risk
  • Examine real-world examples of breaches caused by phishing attacks, malware, ransomware and other cybersecurity incidents
  • Distinguish best practices for creating cybersecurity awareness at an organization-wide level