For smaller hospitals and medical groups, hiring a full-time chief information security officer (CISO) can be costly. As a result, cybersecurity responsibility often falls to the CIO, IT director, or even the hospital’s EHR vendor. This has given rise to two alternatives: hiring a virtual CISO or outsourcing cybersecurity to a managed provider. It is important for hospitals to conduct a risk analysis before making a decision, and more hospitals are considering the cloud as a secure option for data protection.
IoT and ransomware are big security risks, and health systems feel unprepared
US healthcare organizations are facing an increasing number of sophisticated cybersecurity threats, with almost 400 entities reporting incidents linked to ransomware in 2024. Half of
