Aetna CISO Jim Routh leads a global information security team for an organization that serves more than 46 million people. That’s a lot of PHI! In this session, the 20-year security veteran explains how a key component of his approach to safeguarding data is to devote 25% of his budget to purchasing new or emerging technology controls from early-stage companies. It’s the best way he knows to discover game-changing solutions, and because emerging technology is less expensive than more mature solutions, this approach is viable for even smaller healthcare organizations with limited resources. In this session, Routh will discuss his approach to building an effective security technology portfolio. Key discussion points will address his investment philosophy, early stage adoption of less mature solutions (taking risks to reduce risks), when to maintain and/or replace legacy technology, and his vendor evaluation and procurement process.
