Our country is dealing with an epidemic - the abuse of opiates. While they are medically necessary, the opiate epidemic leads to a death rate equivalent to a 747 crashing once a week. There is an immeasurable cost on society from recovery programs, incarceration, non-productivity, and broader emotional trauma. Early success can be credited to prescriber education and implementation of state-level Prescription Drug Monitoring Programs (PDMPs). This blog advocates a cost-effective and highly-effective approach using a shared PDMP with the state of the art in referential matching, real-time behavior analytics, and accurate national data sets indicating fraudulent IDs.
In our last post, we introduced the concept of the "Supply Chain of Information". We use this term in reference to any supply chain, as the trust in the supply chain is based upon the information derived from the supply chain indicating how trusted it is. After all, visibility into your supply chain for any managerial purpose is actually gathering information, at varying levels of reliability, to inform business decisions - inventory management, job sequencing, production shortfalls, supplier diversity requirements,...all things the traditional supply chain expert needs to support the business. Now, transform the supply chain context to cyber-security. Supply chain becomes critical to the cornerstones of cybersecurity: confidentiality, integrity, and availability. The supply chain of information is fundamental to measuring the trust in your supply chain.
Live by my simple adage in cybersecurity, "Machines Don't Do Bad Things, People Do." When you look the potential vectors of cyber, physical, and personnel threats: the vulnerabilities, the mistakes, and the attacks, can all be traced back to a person. Using this adage in building a cyber defense strategy, provides a new kind of framework to measure and reduce threats. The challenge: even though you may see a machine going awry, it is really, really hard to find the "bad guy" before the vulnerability is exploited or the attack is in play. So, in an effort to come at this problem a new way, let's examine "Brent's Inverted Corollary of Cybersecurity" (breaking news), "Machines Don't Do Good Things, People Do".