Organisations need to have plans in place for cyber attack response, which should only be used infrequently but must be able to limit damage and speed recovery. The plan needs to be thoroughly analysed and rehearsed, involve stakeholders of increasing seniority, and should be built into existing structures. It should be regularly exercised to ensure it will function correctly in a crisis situation, and a senior manager should be accountable in its development and maintenance.

HSCC CWG urges halting NPRM, calls for joint cybersecurity policy reform to boost healthcare resilience
The Cybersecurity Working Group (CWG) within the U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) has called on the country’s federal administration to work