Q&A: Cleveland Clinic’s security chief

Mark Dill, director of information security at the Cleveland Clinic, is leaving the clinic to become principal consultant at tw-Security, a boutique healthcare security firm. Dill will be working on security issues with smaller healthcare organizations. He discusses the changes in security practices over the years and the increasing security threats to healthcare organizations. One key challenge he faced was prioritizing risks due to limited budget. He advises that risk analysis is crucial for managing security effectively. It is also important for smaller hospitals to understand their risks and implement reasonable security measures.