Previous All Posts Next

Aetna Healthcare Cybersecurity: Proactive Breach Defense Model

Posted: October 13, 2016 to Cybersecurity.

Tags: HIPAA, Data Breach, Cloud Security

Whenever there’s a big data dump, the security experts at Aetna jump on it and use analytics to scan and identify any credentials that are the same as those of a current user. A match means there’s an opportunity for hackers to take advantage of those credentials. The team immediately forces a password reset and begins the process to fix the problem While the banking and defense industries are miles ahead of healthcare when it comes to dealing with threats from cybercriminals, Aetna’s team is an example of what healthcare should be doing. This may have something to do with Jim Routh, their Chief Information Security Officer having worked for American Express and had been the global head of application and mobile security at JP Morgan Chase. One of the things that Routh understands about cybersecurity is how important intelligence sharing is. The healthcare industry has been slow to adapt this approach but the most effective security teams share information through groups like the National Health Information Sharing and Analysis Center (NH-ISAC), the FBI’s joint private sector partnership InfraGard, the Department of Homeland Security's Cyber Information Sharing and Collaboration Program (DHS CISCP), or the U.S. Computer Emergency Readiness Team (US-CERT). The key to intelligence sharing being successful is to share what you know, and to not just use one of these services. You may get different intelligence from different sources. Additionally, an organization’s security team not only needs the ability to lock a network down before the whole system is compromised, being able to monitor the dark web so that it won’t be blindsided is important as well. Many dark web experts come from a military background with experience in information gathering, specifically when it comes to monitoring an enemy’s tactics, techniques, and procedures. It took a while for the banking and defense industries to come around with the evolving threat of cybersecurity. It appears now that the healthcare industry is poised to take that next inevitable step.

Protect Your Business Today

Petronella Technology Group has provided cybersecurity, compliance, and managed IT services from Raleigh, NC for over 23 years. Contact us today for a free consultation and technology assessment.

For a comprehensive overview, see our Dark Web Monitoring Guide.

Need help implementing these strategies? Our cybersecurity experts can assess your environment and build a tailored plan.
Get Free Assessment
Explore Our Services
Cybersecurity AI Services Compliance HIPAA CMMC Managed IT

Related Articles

NIST CSF 2.0: What Changed, Why It Matters, and How to Update Your Cybersecurity Program [Video + Guide] NIST CSF 2.0: What Changed, Why It Matters, and How to Update Your Cybersecurity Program [Video + Guide] Incident Response Planning: Build a Cyber Incident Response Plan That Actually Works in 2026 [Video + Guide] Incident Response Planning: Build a Cyber Incident Response Plan That Actually Works in 2026 [Video + Guide] Email Security for Business: Stop Phishing, BEC, and Email-Based Attacks Before They Cost You Millions [Video + Guide] Email Security for Business: Stop Phishing, BEC, and Email-Based Attacks Before They Cost You Millions [Video + Guide] Network Segmentation Guide: How to Contain Breaches and Protect Critical Systems with Proper Network Design [Video + Guide] Network Segmentation Guide: How to Contain Breaches and Protect Critical Systems with Proper Network Design [Video + Guide]

About the Author

Craig Petronella, CEO and Founder of Petronella Technology Group
CEO, Founder & AI Architect, Petronella Technology Group

Craig Petronella founded Petronella Technology Group in 2002 and has spent more than 30 years working at the intersection of cybersecurity, AI, compliance, and digital forensics. He holds the CMMC Registered Practitioner credential (RP-1372) issued by the Cyber AB, is an NC Licensed Digital Forensics Examiner (License #604180-DFE), and completed MIT Professional Education programs in AI, Blockchain, and Cybersecurity. Craig also holds CompTIA Security+, CCNA, and Hyperledger certifications.

He is an Amazon #1 Best-Selling Author of 15+ books on cybersecurity and compliance, host of the Encrypted Ambition podcast (95+ episodes on Apple Podcasts, Spotify, and Amazon), and a cybersecurity keynote speaker with 200+ engagements at conferences, law firms, and corporate boardrooms. Craig serves as Contributing Editor for Cybersecurity at NC Triangle Attorney at Law Magazine and is a guest lecturer at NCCU School of Law. He has served as a digital forensics expert witness in federal and state court cases involving cybercrime, cryptocurrency fraud, SIM-swap attacks, and data breaches.

Under his leadership, Petronella Technology Group has served 2,500+ clients, maintained a zero-breach record among compliant clients, earned a BBB A+ rating every year since 2003, and been featured as a cybersecurity authority on CBS, ABC, NBC, FOX, and WRAL. The company leverages SOC 2 Type II certified platforms and specializes in AI implementation, managed cybersecurity, CMMC/HIPAA/SOC 2 compliance, and digital forensics for businesses across the United States.

CMMC-RP NC Licensed DFE MIT Certified CompTIA Security+ Expert Witness 15+ Books
Related Service
Protect Your Business with Our Cybersecurity Services

Our proprietary 39-layer ZeroHack cybersecurity stack defends your organization 24/7.

Explore Cybersecurity Services
Previous All Posts Next
Free cybersecurity consultation available Schedule Now