More than half (60 percent) of healthcare organizations have a senior information security leader, which helps them adopt more holistic cybersecurity practices and perspectives, according to the 2017 Healthcare Information and Management Systems Society Cybersecurity Survey.
For its annual report, HIMSS asked 126 information security professionals from U.S. healthcare organizations what their organization is doing to protect its information and assets from cyber threats.
Here are six survey insights.
1. Patient safety, data breaches and spread of malware are the top three concerns regarding medical device security for healthcare organizations.
2. Seventy-one percent of respondents said their organization allocates a specific part of their budget toward cybersecurity — 8 percent of organizations said no part of the budget has been allocated to cybersecurity. The other 21 percent did not know if their budget allocated anything toward cybersecurity.
3. Eighty-six percent of respondents said their organization follows some cybersecurity framework, with a majority (62 percent) of respondents identifying the National Institute of Standards and Technology Cybersecurity Framework.
4. Eighty-five percent of respondents indicated their organization conducts a risk assessment at least once a year, with 75 percent conducting regular penetration testing.
5. Most (87 percent) of respondents said their organization conducts security awareness training for staff at least once a year.
6. A majority (75 percent) of respondents said their organization has some type of insider threat management program.
Click here to read the full report.
More articles on health IT:
Veritas Genetics purchases AI, bioinformatics company
Illinois to streamline state medical credentialing with blockchain