Cybersecurity experts explore ways to strengthen cybersecurity in healthcare

Cybersecurity experts testified at a May 18 senate Health, Education, Labor and Pensions Committee hearing that cybersecurity training and advocacy was needed to strengthen cybersecurity in healthcare.

Denise Anderson, PhD, president and CEO of the Health Information Sharing & Analysis Center; Joshua Corman, founder of a volunteer cyber safety initiative; Amy McLaughlin, cybersecurity program director for the Consortium of School Networking; and Helen Norris, vice president and CIO for Chapman University testified at the hearing.

Six things to know:

1. In a 2020 hospital survey, 70 percent of hospitals reported facing a significant cybersecurity incident.
2. According to FBI reports, the health sector experienced at least 148 ransomware attacks from June to December 2020.
3. The committee cited lack of skilled cyber staff, a lack of cyber security situational awareness, a lack of knowledge and training for the medical staff as well as at the CEO and board level, and lack of cyber security strategy including a risk management approach as risks to healthcare cybersecurity.
4. Mr. Corman cited the cybersecurity workforce shortage, healthcare’s reliance on legacy systems and the multitude of known vulnerabilities as critical factors contributing to the current state of healthcare cybersecurity.
5. Dr. Anderson recommended that there should be more emphasis on threat sharing and cyber education, as well as incentives for adopting cybersecurity best practices.
6. The committee asked to include a cybersecurity professional, who would work as a government liaison and advocate within the Department of Health and Human Services.

Link to original May 24, 2022 article at Beckers HealthIT:

https://www.beckershospitalreview.com/cybersecurity/cybersecurity-experts-explore-ways-to-strengthen-cybersecurity-in-healthcare.html

• Related Resources & News
• Cyber insurance policyholders facing heavier scrutiny in underwriting, claims
• How FDA’s Draft Guidance Shapes AI Medical Device Safety
• Rady Children’s Fernando Says Operational Engagement Is the Key to Cyber Resilience
• The Rise of CalPhishing Attacks in the Health Sector
• Best Practices for Managing Third-Party Identity and Access Management
• What Healthcare Leaders Need to Know About Cybersecurity in 2026-2027
• What Trump’s AI Executive Order Means for Healthcare Sector
• Health Care and Social Assistance Threat Landscape Report
• Agentic AI in Healthcare Is a Risky Proposition
• Live@eXchange Day 2 – Health-ISAC Medical Device Security Analyst