Blog
EMS Cybersecurity Insights & Resources
AllEMSHIPAAePCRPHIRansomwareCADHipaa complianceIncident responseBAAEms securityPublic safetyEms cybersecurityFire departmentMdmMFANEMSISPhishingAmbulanceBreach notificationCad securityChain of custodyCisoClinical continuityDe identificationEsoFire station securityFoiaImagetrendIt securityMspPayrollPublic recordsRunbookService accountsThird party riskVendor riskZero trustZoll
Working With an IT MSP That Doesn't Understand EMS
The operational realities your generalist MSP is missing, the contract addendum that closes the gap, and the boundary between IT and operations.
MspEMSCADePCRPublic safety
Building an Incident Response Plan That Survives Contact With a Real EMS Cyber Incident
Generic IT incident response plans fail in EMS. Build a plan that accounts for clinical continuity, dispatch, NEMSIS, and the 2 a.m. runbook.
Incident responseRansomwareEMSClinical continuityNEMSIS
Vendor Risk Management for Small EMS Agencies Without a CISO
How to manage vendor risk for a small EMS agency without a CISO. A lean 80-20 approach focusing on the vendors that handle PHI and keep the trucks running.
Vendor riskEMSHIPAABAACiso
Don't Click That Link: Email Phishing Targeting EMS Agencies for Payroll and Patient Data
EMS agencies are prime targets for phishing attacks targeting payroll and patient data. Here is how to stop them.
EMSPhishingePCRCADRansomware
CAD-to-ePCR Interfaces and the Quiet HIPAA Risk
The CAD-to-ePCR bridge is often the weakest HIPAA control in EMS. Here’s where the PHI risk actually lives and what a defensible design looks like.
CADePCRHIPAAPHIService accounts