Feature | Cybersecurity | June 30, 2015

HIMSS: Two-Thirds of Healthcare Organizations Experienced a Recent, Significant Security Incident

Organizations implementing new technology and personnel to stay ahead of cyberattacks

HIMSS, survey, cybersecurity, cyberattacks, healthcare organizations, IT

June 30, 2015 - Cybersecurity was identified as an increased business priority over the past year according to 87 percent of respondents in the newly released 2015 HIMSS (Healthcare Information and Management Systems Society) Cybersecurity Survey. Two-thirds of those surveyed also indicated that their organizations had experienced a significant security incident recently. Released at the Privacy and Security Forum, held in Chicago from June 30-July 1, this research reflects the continued cybersecurity concerns by healthcare providers regarding the protection of their organizations' data assets. 

"The recent breaches in the healthcare industry have been a wake-up call that patient and other data are valuable targets and healthcare organizations need a laser focus on cybersecurity threats," said Lisa Gallagher, vice president of technology solutions, HIMSS. "Healthcare organizations need to rapidly adjust their strategies to defend against cyber-attacks. This means implementing and incorporating threat data, new tools and sophisticated analysis into their security process."

The survey of 297 healthcare leaders and information security officers across the industry also found that at least half of respondents made improvements to network security, endpoint protection, data loss prevention, disaster recovery and IT continuity. Despite the protective technologies available, most respondents felt only an average level of confidence in their organizations' ability to protect their IT infrastructure and data.

Key findings from the survey include the following:

  • Respondents use an average of 11 different technologies to secure their environment, and more than half of healthcare organizations surveyed hired full-time personnel to manage information security;
  • 42 percent of respondents indicated that there are too many emerging and new threats to track;
  • More than 50 percent of information security threats are identified by internal security teams;
  • 59 percent of survey respondents feel the need for cross-sector cyber threat information sharing;
  • 62 percent of security incidents have resulted in limited disruption of IT systems, with limited impact on clinical care and IT operations;
  • 64 percent of respondents believe a lack of appropriate cybersecurity personnel is a barrier to mitigating cybersecurity events;
  • 69 percent of respondents indicated that phishing attacks are a motivator for improving the information security environment;
  • 80 percent use network monitoring to detect and investigate information security incidents; and
  • 87 percent of respondents reported using antivirus/malware tools that have been implemented to secure their healthcare organizations' information security environment.

For more information: www.himss.org

 

Related Healthcare Cybersecurity Content:

Raising the Bar for Medical Device Cyber Security

Healthcare Industry Lacking in Basic Cybersecurity Awareness Among Staff

Market Report Calls Into Question St. Jude Medical EP Device Safety, Cybersecurity

FDA Harshly Criticizes Abbott, St. Jude For Failure to Address EP Device Safety

Healthcare 2015 Data Breaches - Why the Cloud Is Not Responsible

How You Should – and Should Not – Be Sharing Medical Information With Patients

How Can Doctors Practice Better Security?

 

Related Content

ScImage and Invia Partnership Announced
News | Cardiac PACS| September 19, 2017
ScImage Inc. and Invia Imaging Solutions recently announced formation of a joint partnership at the American Society of...
Abbott. St. Jude Medical has updated its firmware to address cybersecurity issues with its Allure Quadra MP and other EP devices

Abbott. St. Jude Medical has updated its firmware to address cybersecurity issues with its Allure Quadra MP and other EP devices.

Feature | EP Lab| August 29, 2017 | Dave Fornell
August 29, 2017 — The U.S.
MDISS Launches 'WHISTL' Network of Medical Device Security Testing Labs
News | Cybersecurity| August 23, 2017
The Medical Device Innovation, Safety and Security Consortium (MDISS) recently launched the first of more than a dozen...
HHS Unveils Improved Web Tool to Highlight Recent Health Information Breaches
News | Cybersecurity| August 21, 2017
The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) recently launched a revised web...
Healthcare cybersecurity concerns have increased dramatically as EMRs and medical devices become more digitally connected.

Healthcare cybersecurity concerns have increased dramatically as EMRs and medical devices become more digitally connected.

Feature | Cybersecurity| August 18, 2017 | Dave Fornell
August 17, 2017 — Cybersecurity has become a growing concern in healthcare as patient data, medical systems and impla
Houston Methodist Hospital Enters Multi-Year Technology and Research Agreement With Siemens Healthineers
News | Cardiac Imaging| August 17, 2017
Houston Methodist Hospital and Siemens Healthineers have entered into a multi-year agreement to bring cutting-edge...
ScImage Awarded U.S. Government DIN-PACS IV Contract
News | PACS| August 16, 2017
ScImage Inc. was recently awarded a new DIN-PACS IV (Digital Imaging Network/Picture Archiving and Communications...
The FDA is concerned about cybersecurity of ICDs and cyber security of other medical devices.
Feature | Cybersecurity| August 16, 2017 | Dave Fornell
There is growing concern among patients and regulators that medical devices, especially implantable electrophysiology
Xavier University Announces Healthcare Artificial Intelligence Summit
News | Artificial Intelligence| August 07, 2017
Xavier University has launched the Xavier Center for Artificial Intelligence (AI), a pioneering effort to accelerate...
Nuance Restores Service to Majority of eScription Clients Following Malware Incident
News | Information Technology| July 28, 2017
Nuance Communications Inc. provided an update on its restoration process following the previously reported June 27,...
Overlay Init