Cybersecurity stays high of thoughts for healthcare, as it’s the most focused business, incurring the very best common value of a breach ($9.2M), with the slowest incidence response time (287 days).1
As a healthcare group, we’ve confronted new challenges over the past twenty-four months. Whereas the pandemic has created many new hurdles for the healthcare sector, it additionally grew to become the catalyst for healthcare innovation and transformation and has accelerated change.
Examples of this modification embrace:
- Hybrid and distant work are actually commonplace
- Adoption of digital care and telehealth are widespread
- Acceleration of IoT and distant affected person monitoring
- Elevated digitization of healthcare
- Heightened give attention to digital affected person experiences
With change comes new safety necessities
Healthcare is evolving into a brand new period the place practically the whole lot is linked by digital applied sciences that enhance the best way healthcare is delivered to sufferers. The way forward for healthcare is being pushed by digital transformation that evolves our supplier care supply fashions, with a heightened give attention to open-standards interoperability. This ongoing digitization will proceed to raise and introduce new safety dangers because the menace panorama turns into extra complicated.
Well being techniques and hospitals proceed to judge and implement new fashions for care supply past the hospital partitions, reminiscent of distant clinics, ambulatory surgical procedure facilities, and residential well being. The digital platforms connecting these areas could also be regional, nationwide, or worldwide. Whereas this connectivity creates nice alternatives for transformation, it additionally creates broader assault surfaces for financially motivated menace actors.
Healthcare has skilled an ever-increasing frequency and severity of cyber safety breaches. Cyberattacks in healthcare greater than doubled in 2020, with ransomware accounting for 28% of all assaults. It’s simple to see why the data-rich healthcare business is a goal for unhealthy actors.2
Cybersecurity breaches for healthcare organizations and sufferers contain the theft of protected well being info (PHI), personally identifiable info (PII), ransomware assaults, and the potential to hack and management medical units. Breaches can lead to longer affected person stays, delays in procedures, and diversions to different amenities.
Medical gadget safety can also be a priority for healthcare suppliers as unhealthy actors take goal at weak unpatched techniques and improperly configured units. The variety of linked medical units can characterize as much as three-quarters (74%) of the units on a healthcare supply group’s community.2
The proliferation of good and linked medical units will solely proceed sooner or later. Between 2020 and 2028, the good medical units market is projected to develop by 20.1% CAGR.3
To complicate the panorama additional, healthcare organizations should take into account requirements and regulatory necessities reminiscent of these discovered with HIPAA, ISO, NIST, GDPR, and PCI DSS. To guard important affected person knowledge and scientific techniques, many healthcare IT leaders have lately adopted the Zero Belief safety framework to bolster cybersecurity defenses. Whereas it’s each a technique and an architectural mannequin, organizations want to acknowledge that additionally it is a journey.
Cisco defines Zero Belief as a complete strategy to securing all entry throughout a corporation’s purposes and atmosphere, from any consumer, gadget, and site. It protects the workforce, workloads, and office.
5 methods to enhance safety posture in 2022
In abstract, the overarching mission for CISOs and their safety groups is to guard their establishments whereas sustaining enterprise continuity.
Listed below are 5 ways in which healthcare organizations can enhance their safety posture this yr:
- Deploy endpoint and malware safety for units and customers
- Automate IT and safety duties to scale back menace dangers
- Undertake a zero-trust safety framework to assist forestall unauthorized entry
- Take a look at incident response plans, conduct common danger assessments and desk tops with enterprise alignment
- Leverage menace intelligence instruments to proactively establish, mitigate, and remediate safety threats
Because the world’s largest supplier of networking, collaboration, and safety applied sciences, Cisco is dedicated to addressing the safety challenges of the healthcare business. We encourage you to discover our cybersecurity options for healthcare in better depth in our portfolio explorer instrument.
1 Trendy Healthcare, Scripps Well being cyberattack value the corporate $113 M, August 11, 2021
2 The Forrester New Wave: Related Medical System Safety Q2 2020, June 1, 2020
3 Information Bridge Market Analysis: Good Medical Units Market 20.1% of CAGR by 2021