Summary4 min read

Podcast Summary: Simplifying IT Strategy and Strengthening Cybersecurity with Jim Jacobs of MediQuant

Podcast: Becker’s Healthcare Podcast
Host: Scott Becker
Guest: Jim Jacobs, President & CEO, MediQuant
Date: October 20, 2025
Duration: ≈10 minutes (content only)

Episode Overview

This episode dives into the challenges and strategies of IT management in healthcare, with a particular focus on application rationalization and cybersecurity. Jim Jacobs, a veteran software leader serving healthcare providers, shares insights on modernizing IT portfolios, reducing cyber risk, aligning technology with broader organizational goals, and navigating cultural resistance during system changes.

Key Discussion Points & Insights

1. The Evolving Landscape of Application Rationalization

[01:30]

Manual to Dynamic: Jim highlights that application rationalization has shifted from a manual, resource-intensive task ("a static report or spreadsheet") to a dynamic approach empowered by real-time risk dashboards and actionable roadmaps.
Five Key Objectives:
- Reduce cyber exposure
- Aid in compliance risk
- Lessen the technology footprint
- Drive cost savings
- Simplify IT responsibilities
Bonus Objective: Supports due diligence during healthcare mergers and acquisitions by clarifying the IT liabilities and redundancies being acquired.

"Historically the rationalization was completely manual... Now we're headed towards dynamic system with risk dashboards, cost saving opportunities, and an opportunity for a roadmap."
— Jim Jacobs, [01:30]

2. Cybersecurity’s Central Role in IT Strategy

[03:22]

Risk Continuum: Application rationalization is essential to comprehensive cybersecurity strategy, helping organizations systematically assess where they are most vulnerable.
Hidden Risks: Systems kept without maintenance contracts or security updates pose silent risks, especially when they’re forgotten or lightly used.
Actionable Assessments: Creating actionable risk reports for CIOs/CSOs empowers targeted interventions, such as system consolidation.

"Our goal is to be able to provide a risk assessment for the CIO, the CISO, however they're organized internally... When you stop paying maintenance now, you likely don't have the latest security patches. Somebody needs to know that."
— Jim Jacobs, [03:22–04:48]

3. Navigating Organizational Culture and Resistance

[05:23]

Emotional Terrain: Removing or consolidating applications can be fraught due to personal attachments or job routines, sometimes causing emotional or political friction.
Shift to Objectivity: Using data-driven insights helps reframe conversations from emotional debates to fact-based decisions, allowing for more productive alignment across stakeholders.
Role of Partnerships: External advisors can act as neutral facilitators, helping diffuse internal politics and accelerate consensus building.

"These conversations can become emotional or personal. So internal alignment on priorities is critical... When you can shift the conversation to data, it becomes much more objective."
— Jim Jacobs, [05:23]

"You can blame a third party if you want, if that's helpful in the conversation."
— Jim Jacobs, [06:11]

4. 2026 and Beyond: Optimism, AI, and Responsible Innovation

[07:28]

Visible Progress: Leaders are now more proactive, moving beyond EHR implementations to optimizing IT portfolios and reducing risk.
AI with Caution: Jacobs observes that while AI is on executives' minds, it brings both opportunity and risk—especially in cybersecurity. The industry, he says, is acting prudently.
Practical Solutions: Emphasis remains on strategies with immediate ROI and clear impact, such as application rationalization and data management.

"There's a much more of awareness of what we call a responsible approach to AI... AI itself can create a cyber risk if you're not careful."
— Jim Jacobs, [07:43]

Notable Quotes & Memorable Moments

On the shift in IT priorities:
"People are finally lifting their heads up more and more to say now what do we do about maximizing, optimizing, reducing risk, all the things we talked about initially."
— Jim Jacobs, [07:34]
On the pragmatism of current IT focus:
"This is something people could start working on tomorrow and see benefits on in three weeks or a month versus something that is like AI that you're going to be doing in drips and drafts."
— Scott Becker, [09:35]
On leadership and simplicity:
"Jim Jacobs ... can make the complex simple, which is one of the greatest traits in management and leadership."
— Scott Becker, [09:54]

Important Segments & Timestamps

| Timestamp | Segment Description | |-----------|-------------------------------------------------------| | 00:39 | Jim Jacobs introduces career and MediQuant’s focus | | 01:30 | The why and how of application rationalization | | 03:22 | Cybersecurity: risks, trends, and the role of rationalization | | 05:23 | Overcoming cultural and political barriers in IT change| | 07:28 | Industry optimism, responsible AI adoption | | 09:35 | Pragmatic benefits of focusing on application rationalization|

Closing Thoughts

Jim Jacobs emphasizes the actionable nature of application rationalization and cybersecurity improvements, offering hope that hospitals can see real ROI and tangible risk reduction in weeks—not years. Highlighting the need for cultural change, factual discussion, and responsible innovation (with a wary eye on AI), Jacobs leaves listeners with a roadmap to make healthcare IT both safer and more efficient.

Loading summary

Transcript14 lines

[00:00]
A
This is Scott Becker with the Becker's Healthcare podcast. I am thrilled today to be joined by a brilliant leader who I love visiting with. We're talking today with Jim Jacobs, the president and the Chief Executive Officer at Metaquant. We're going to talk about IT strategy, application rationalization, cybersecurity, and a lot more about smart data management too. But a lot about, you know, how do people manage how many applications they have going and how do they think about it in IT strategy and more. Jim, can you take a moment to tell us about yourself and Metaquant and your career?
[00:40]
B
Sure. And good morning. Thank you, Scott. Appreciate the introduction. I've been in healthcare for more than 30 years on the software side, always serving the provider market. And I'm fortunate to lead a company that's in the active data archiving space, moving into the application rationalization space. So glad to be here.
[00:58]
A
Well, thank you very, very much. And when you talk to Chief Executive suite C suite Chief Strategies, Chief Information Officer and more, you have this mix of issues. You got people focused on risk reduction, transparency, you know, in cybersecurity and so many different challenges, plus trying to align with the strategy of the organization. Can you talk about the importance of application rationalization and why it's key for organizations now and into 2026, next several years?
[01:30]
B
Definitely. I think it's a great insightful question. We think we're at the beginning of very interesting changes in application rationalization because historically the rationalization was completely manual. It was a heavy lift, took a lot of resources from the hospital systems. Then the result was a static report or spreadsheet. It was good, but it was not highly actionable. Now we're headed towards dynamic system with risk dashboards, cost saving opportunities, and an opportunity for a roadmap. Specifically to your question, it's critical, but it helps accomplish five key objectives, which is reduce cyber exposure, help with compliance risk, reduce the technology footprint, reduce cost, and IT simplifies the IT responsibilities. There's a sixth one as an added bonus. For those organizations that are in acquisition mode, you can use application rationalization to help assess what your buying Historically, CFOs have always known, you know, what, what the laundry costs were and hospitalists and all those lists. But it was very difficult to understand what you were taking on from an IT perspective and this helps change that.
[02:35]
A
Conversation, particularly if you're not managing thousands of apps. It makes it a lot easier to integrate organizations as technology and people are the key part of these mergers and integrations and so forth. Can you talk to us for a moment, Jim, about cybersecurity. I can't go through a date without it being a serious, serious discussion. We just had our Health IT and Digital health conference, lots of discussion on cybersecurity and the war with AI, offense and defense. How does approaching application rationalization through a cybersecurity lens support broader strategic priorities? And talk about sort of what you see organizations achieving as they work through this combined issue of application rationalization and cybersecurity.
[03:22]
B
Yeah, it's another great topic. You think about the number of bad actors out there and the risks we all face as healthcare providers and organizations. You have to have a cyber lens, we believe. And application rationalization is a part of a comprehensive program. And what it can do is help you create a risk continuum so you begin to understand of the applications we have. And you're right, some organizations have thousands of software applications. Where do we have particularly bad cyber risk? Where do we have unknown risk, where we need to go do some investigation and then try to quantify what is the risk level. Our goal is to be able to provide a risk assessment for the cio, the ciso, however, they're organized internally because, for example, you might have duplicate systems running. That's an unnecessary risk. And then cyber reduction is a great justification to start consolidating systems and we can talk more about that. But if you have systems, one of the things we've seen is where they've not been paying maintenance on the system, so trying to save money, they've still got the system, they're not using it very much, but it's still there. When you stop paying maintenance now, you likely don't have the latest security patches. Somebody needs to know that to get that as a priority to either start paying the maintenance and get the patches or archive the data, do something with it because somebody, the bad actors are knocking at the door. Presumably you don't want to leave a gap for them to get inside.
[04:48]
A
Thank you very, very much. And following up on cybersecurity, yes, systems try and rationalize sort of application management, how many applications they have going. There's always someone who feels like their ox may be getting gored. And obviously if you're in a 10,000 person organization and two people are using the application, unless it's absolutely critical to what they do, you've got to get rid of it for a billion different reasons. But how do you deal with the culture in the shifts as you try and deal with application rationalization? And how do you work through that from a people perspective? And A culture perspective.
[05:23]
B
Yeah. I think this question is possibly the hardest issue of all. It's one thing to say that a system is old or a system is duplicative, but to try to get the people together easily. These conversations can become emotional or personal. So internal alignment on priorities is critical. You've got to get the users to a place where they'll let go of certain systems. And so how application rationalization begins to play in that is that it provides data. It begins to allow the executive teams to have better data. They can use that to prioritize. They can actually demonstrate to the stakeholders why they're trying to consolidate systems. When you can shift the conversation to data, it becomes much more objective. It doesn't mean that the, the interpersonal relations aren't critical. There's a Becker's article actually out today that talks about the interpersonal relationships between executives and payers. I think that that article could be applied here directly because you've got to have people sitting together agreeing on we've got a cyber risk problem and that's worse than keeping this older system up. That's the data that goes around it. When you talk about partnerships that, that coincide with that. Partnerships many times can be used as an independent advisor. They're devoid from the internal politics, they're not involved in the issues. They can actually be somebody. You can blame a third party if you want if that's helpful in the conversation. But I think the executives have got to prevail on this topic. They've got to figure out better ways to reduce cyber risk. And one way to do that is to use data to shift the conversation from an emotional one to a fact based one.
[07:03]
A
Jim, take a second on. You're so focused on application rationalization and cybersecurity and helping big systems and small systems align their IT priorities and their strategies. Take a moment and sort of what you're most excited about going forward for this coming year. You know, we're ending 2025. Where are you most focused and excited? Jim?
[07:28]
B
I'm excited that the hospital systems are ever more on board with these topics that we're talking about. That the big push to get through whatever the new EHR is going to be in these massive projects. People are finally lifting their heads up more and more to say now what do we do about maximizing, optimizing, reducing risk, all the things we talked about initially. I think what's also exciting is there's a much more of awareness of what we call a responsible approach to AI. I hadn't mentioned AI. Previously because it's going to be a factor that's in application rationalization, but it's too much a flash in the pan right now for executives to grasp. I actually think that AI itself can create a cyber risk if you're not careful. So I think that the industry itself is reacting very appropriately. There's a lot of great dialogues. People like you are leading the way on the conversations around how do you advise the executives on what to look for, what to look out for? They've got to be so cautious in the decisions they make. And so it's an exciting time because these solutions actually offer direct value with the hard roi, help help solve headaches for them. So there's a lot to be excited about and we're very bullish on the future.
[08:47]
A
No, fantastic in Jim, anything else we didn't discuss today that we should be talking about and thinking about? You mentioned AI, which is the first technology discussion in a long time, not been the focus of the discussion and starting not, not kicking off with that. And I appreciate that so much. To get back to sort of this core of application rationalization and core IT strategy. Anything else we've not discussed today that you'd love to talk about for a second?
[09:13]
B
I don't think so. I think this covers it. I appreciate the conversation. I think that this type of conversation is, it's an in the ground technology that can be done that CIOs can act on as opposed to too much of the distractions that are out in the market. So I like these conversations and no, I don't think I have anything else to add to it.
[09:35]
A
And I think your point is, is so well taken because this is something people could start working on tomorrow and see benefits on in three weeks or a month versus something that is like AI that you're going to be doing in drips and drafts until you accelerate the improvement in where you're going on it. So I couldn't agree with you more. Jim Jacobs, brilliant CEO of mediquant. I love talking to Jim. He's one of the people that can make the complex simple, which is one of the greatest traits in management and leadership. Jim, thank you for joining us on the Becker's Healthcare podcast today.
[10:06]
B
Thank you so much Scott. Have a wonderful day.