In our last post, the board member toasted the CEO for handling the security breach and satisfying the board.
Despite new and advanced cybersecurity tools and techniques implemented after the last breach, the hospital received disturbing news. A known ransomware gang contacted the hospital threatening to shut down their patient information system unless their demands were met.
The CEO was angry. She paced back and forth in her office. The General Counsel sat at her table reading the note from the ransomware gang.
“I told you we needed a ransomware expert,” said the General Counsel. “I instructed the CIO to look for someone with that background.
I might add that I copied you on those emails as well.”
The CEO asked the General Counsel to find the CISO and bring him to her office.
After the General Counsel had walked out of earshot, the CEO called the HR VP and asked, “Has the General Counsel done anything that’s considered actionable in the last year?”
Comments