The most recent HIMSS Cybersecurity Survey provides insight into the cybersecurity landscape of healthcare organizations based upon the feedback from 168 U.S.-based healthcare cybersecurity professionals. Healthcare organizations face a barrage of significant security incidents such as phishing, ransomware, and social engineering attacks, in addition to the challenges faced by dealing with the COVID-19 pandemic.
Significant security incidents continue to plague healthcare organizations of all types and sizes. Often, securing information and infrastructure is quite complex. Preserving the confidentiality, integrity, and availability of information are equally important. This is, however, a difficult balancing act. In this survey, 70% of respondents indicated that their organizations experienced significant incidents in the past twelve months. Other highlights include:
The findings of the survey suggest that healthcare organizations are slowly improving their cybersecurity posture. This is not enough to keep pace with new threats. However, significant barriers to progress exist such as tight security budgets, growing legacy footprints, and a growing volume of cyber-attacks and compromises. Now, more than ever, there is a need for better cybersecurity solutions, budgets, personnel and security awareness training to help resolve these challenges.
Healthcare organizations need to make cybersecurity a fiscal, technical and operational priority. Upgrading or replacing legacy systems, conducting end-to-end security risk assessments, enhancing cybersecurity awareness and training programs, and increasing cybersecurity budgets are a few, proactive steps that can be taken. It is time for healthcare organizations to improve their security postures. Robust cybersecurity is essential for normal operations, patient safety, and data protection.
August 9-13, 2021
Join changemakers at HIMSS21—in person and digitally—as we reimagine health together through education, innovation and collaboration.