A survey by Black Book Research found that US hospitals’ boards of directors lack technology expertise. Only 4% of respondents had direct technology experience in healthcare, and 88% had no knowledge of healthcare cybersecurity risks. Additionally, the majority had no knowledge of IT lifecycle cost studies, IT optimization strategies, artificial intelligence, and machine learning. The survey also revealed that boards were unprepared for large-scale breaches or failures of electronic health record systems. Only 5% had a dedicated technology committee and board members were often biased in vendor selection processes.
Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity highlighted the need for better tracking of devices and their vulnerability to cyber threats. They noted
