The Life and Death Stakes of Healthcare Cybersecurity | #DTF038

In Episode 38 of the DTF Cyber Podcast, Fern and Troy welcome Healthcare CISO, Bob Schlotfelt. We dive into why an incident at a hospital is fundamentally different from a retail breach. While Damian is out, Bob brings decades of insight into protecting patient safety over just protecting data. We discuss the nightmare of unpatchable medical devices, why compliance doesn't equal security, and the hilarious (but effective) ways to get a nurse's attention for security training.Chapter Markers:•⁠ ⁠00:00 - Intro: Netflix vs. Banks vs. Hospitals•⁠ ⁠01:46 - Introducing Bob, Healthcare CISO•⁠ ⁠08:38 - The Threat to Connected Medical Devices•⁠ ⁠18:50 - Fixing "Operational Friction" on the Hospital Floor•⁠ ⁠34:06 - Security Awareness in the Bathroom Stalls?•⁠ ⁠43:09 - Why Compliance (HIPAA) is NOT Security.•⁠ ⁠1:01:00 - Telling Truth to Power: Boardroom Advice.http://cyberpodcast.netSpotify: http://spotify.cyberpodcast.netApple: http://apple.cyberpodcast.netX: https://x.com/dtfcyberpodcastIG: https://www.instagram.com/dtfcyberpodcast/Linkedin:DTF: https://www.linkedin.com/company/dtf-cyber-podcast/Damian: https://www.linkedin.com/in/damianchung/Troy: https://www.linkedin.com/in/kosovotroy/Fern: https://www.linkedin.com/in/fernrojasaz/Business Inquiries: dtf at cyberpodcast dot net Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.