Cyber Resilience in Healthcare: Mitigating Hospital Downtime
To maintain uptime after cyberattacks, healthcare organizations require robust incident response plans, backup strategies and training such as tabletop exercises, experts say.
Read or listen to the full article here:
Healthcare organizations must plan for network outages, possible electronic health record downtime and outages of vital medical systems if a surprise ransomware attack, such as a vishing or a man-in-the-middle attack, occurs.
Errol Weiss, chief security officer at the Health Information Sharing and Analysis Center (Health-ISAC), says that organizations have shifted from simply preventing attacks to detecting and responding to them as part of a cyber resilience effort.
“It’s the monitoring, speed to action and response to mitigation,” Weiss says. “That is what matters today.”
- Related Resources & News
- Health-ISAC Hacking Healthcare 3-21-2025
- Potential Terror Threat Targeted at Health Sector – AHA & Health-ISAC Joint Threat Bulletin
- New Cybersecurity Policies Could Protect Patient Health Data
- CyberWire Podcast: PHP flaw sparks global attack wave
- Health-ISAC Hacking Healthcare 3-14-2025
- HSCC Aiming to Identify Healthcare Workflow Chokepoints
- New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
- Are Efforts to Help Secure Rural Hospitals Doing Any Good?
- CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
- 2024 Health-ISAC Discussion Based Exercise Series After-Action Report