When we consider that the number of healthcare breaches in the first five months of 2022 has nearly doubled in the same period last year in the US, it’s clear that steps need to be taken to mitigate this risk.
To an extent, companies can rely on the Health Insurance Portability and Accountability Act (HIPAA) in the USA and ENISA in the EU for guidance on best practices in cybersecurity, but compliance does not equate to security.
The speed and sophistication of today’s cybercriminals have made it clear that healthcare organizations must become individually responsible for testing and validating their cybersecurity programs, adopting proactive rather than reactive security postures.
The FBI has repeatedly identified healthcare as the sector most targeted by cyberattacks. The healthcare industry sustains higher financial losses due to breach than any other industry, with an average of over $7 million per attack in 2020, representing a 10% increase on 2019 figures.
How Can a Digital Therapeutic Company Get Cybersecurity Right?
Standing still is not an option given the current healthcare cybersecurity landscape – modern security requires constant vigilance and preparation to ensure readiness for an attack. We need to shift from a reactive to a proactive mindset, and to help us understand what that means in reality, Sidekick Health’s Compliance Officer, Kristinn Gylfason, talks about the best ways to meet modern cybersecurity demands.