Cyber threats facing long-term care (LTC) pharmacies continue to evolve, putting sensitive data, systems, and patient trust at risk. In a recent episode of FrameworkFocus, host Todd Eury sat down with Scott Beatty, President & CEO of SoftWriters, and Chris Callahan, Partner at Echelon Risk + Cyber, to unpack today’s cybersecurity landscape and share practical strategies for strengthening organizational security maturity. The conversation built on themes first explored during their joint session at FrameworkLTC Innovation, emphasizing that cybersecurity is not just a technical challenge, but a leadership and business imperative.
Chris Callahan opened the discussion by grounding listeners in the reality many LTC pharmacies face today: a rapidly expanding threat surface driven by increased digitization, interconnected systems, and emerging technologies like artificial intelligence. While AI presents powerful opportunities to improve efficiency and care delivery, it also introduces new risks when adopted without proper safeguards.
“Right now, AI is very exciting. There’s a huge rush to leverage this super intelligence,” Chris explained. “At the same time, we can’t lose sight of security, we can’t lose sight of data privacy.” He cautioned that organizations rushing forward without guardrails often expose sensitive data and systems to unnecessary risk.
According to Chris, the differentiator won’t be who adopts AI the fastest, but who adopts it the smartest. “The organizations that are going to be winning are the ones that have strong AI governance in place,” he said, noting that governance should act as an accelerator, not a brake, on innovation. Strong leadership, accountability, and clearly defined risk ownership allow organizations to adopt new technologies with confidence rather than fear.
That leadership-first mindset is something Scott Beatty sees as essential, both internally at SoftWriters and across the customer base the company serves. Scott emphasized that cybersecurity and innovation cannot be treated as opposing forces. Instead, they must evolve together, guided by intentional leadership and long-term thinking.
“We started this AI process years ago,” Scott shared. “We opened up a conversation with thought leaders in our industry, we brought technologists in, we brought in experts who are at the forefront of this in Silicon Valley.” Rather than reacting to trends, SoftWriters took a deliberate approach by studying, experimenting, and building internal expertise over time. And that work, Scott noted, is never finished. “Your studying is never done,” he said, underscoring how quickly both technology and risk continue to change.
This philosophy reflects a broader point made throughout the episode: cybersecurity maturity is not about perfection, but progress. Organizations that treat security as an ongoing journey, supported by leadership engagement and continuous learning, are better positioned to adapt as threats evolve.
One of the most practical takeaways from the conversation centered on the dangers of FOMO, or fear of missing out. Chris pointed out that many organizations feel pressure to adopt the latest tools or platforms simply because competitors are doing so. That urgency can lead to rushed decisions, limited due diligence, and ultimately, increased exposure.
Chris stressed the importance of slowing down just enough to ask the right questions, especially when patient data and operational continuity are at stake. “When you are dealing with different technologies that are now bringing AI into the patient care setting, the vendors that you are working with should have a proven track record of security and data privacy,” he said. “These should be trusted partners that you have longstanding relationships with.”
Vendor risk management, accountability, and transparency are critical components of a strong security posture. As Scott added, technology partners have a responsibility not only to secure their own platforms, but to empower customers with education, best practices, and clear communication.
Throughout the episode, both guests reinforced that effective cybersecurity is built on more than just tools. People, process, and culture play an equally important role. Training staff, defining clear roles and responsibilities, and embedding security awareness into everyday operations help reduce risk long before an incident occurs.
Leadership engagement is key. When executives treat cybersecurity as a strategic priority rather than an IT checkbox, it sends a clear message throughout the organization. That mindset fosters accountability, encourages smarter decision-making, and supports sustainable innovation.
As the episode concluded, one message stood out: LTC pharmacies do not need to choose between innovation and security. By investing in strong governance, trusted partnerships, and leadership-driven accountability, organizations can strengthen their defenses while continuing to evolve.
Cybersecurity maturity is a journey, not a destination. And as Scott and Chris made clear, the pharmacies that approach it with intention, discipline, and collaboration will be best positioned to protect their patients, their data, and their future.
To hear the full conversation and gain deeper insights into today’s threat landscape and practical defense strategies, listen to the latest episode of FrameworkFocus.
In addition to the player above, you can also listen to the full episode using one of the links below:
FrameworkFocus is focused exclusively on Long-Term Care Pharmacy. We release a new episode every month that addresses the hottest topics in LTC pharmacy through timely interviews with industry trailblazers, thought leaders, and LTC pharmacists. Follow and subscribe to the podcast wherever you listen so you do not miss an upcoming episode.