ISO - Healthcare cybersecurity: Diagnosing risks, prescribing solutions

<!DOCTYPE html> <html lang="en"> <head><link rel="canonical" href="https://www.iso.org/healthcare/cybersecurity" /><link rel="alternate" hreflang="en" href="https://www.iso.org/healthcare/cybersecurity" /> <link rel="alternate" hreflang="ru" href="https://www.iso.org/ru/healthcare/cybersecurity" /> <link rel="alternate" hreflang="fr" href="https://www.iso.org/fr/soins-sante/cybersecurite" /> <link rel="alternate" hreflang="es" href="https://www.iso.org/es/asistencia-sanitaria/cyberseguridad" /> <script> dataLayer = [{ 'pageType': 'fwk:news', 'pageLanguage': 'en', 'pageMode': 'live', 'pageServer': 'prod' }]; </script> <style> /* Early rules to mitigate CLS */ .nav-utility { padding: 5px; z-index: 1024; position: relative; } .text-sm { font-size: .875em; } .nav-utility li.nav-item a.nav-link { padding: 0; text-decoration: none; } .dropdown-toggle::after { font-size: .75em; vertical-align: baseline; } .logo.isologo.logo-sm { height: 50px; width: 50px; } .nav-iso .navbar-toggler { margin-left: 0.5rem; order: 4; } .navbar-toggler-icon-animated { width: 20px; height: 15px; position: relative; margin: 0; transform: rotate(0); display: inline-block; } .nav-iso .navbar-form { order: 2; flex: 1; } .navbar-form { margin-left: 0.5rem; } .height-300 { height: 300px; } section.section-md { padding-top: 3.75rem; padding-bottom: 3.75rem; } .nav-relatives .nav-children, .nav-relatives .section-head { font-size: calc(1.255rem + .06vw); } .previous a::before, .section-back a::before { vertical-align: bottom; padding-right: .3em; transition: all 0; } @media screen and (max-width:500px) { .section-back { flex-wrap: nowrap; overflow-x: hidden; } .section-back > a:not(:first-of-type):not(:last-of-type) { display: none; } .heading-condensed > h1 { font-size: 31.6588px; line-height: 39.5735px; } .heading-condensed > h2 { font-size: 26.1713px; line-height: 32.7141px; } } @media (max-width: 1199.98px) { section.section-navigation { padding-top: 1.875rem; } } </style>  <script src="https://cdn.cookielaw.org/scripttemplates/otSDKStub.js" data-document-language="true" type="text/javascript" charset="UTF-8" data-domain-script="0217ba9a-8935-44d6-872d-1f223304e117" ></script> <script type="text/javascript"> function OptanonWrapper() { } </script>  <meta name="google-site-verification" content="mQuqWPbWruZdQgZR8QwbxOWnjjxkcFiyJLHWY-cOOHk" />  <script type="text/plain" class="optanon-category-C0001"> var _mtm = window._mtm = window._mtm || []; _mtm.push({'mtm.startTime': (new Date().getTime()), 'event': 'mtm.Start'}); var d=document, g=d.createElement('script'), s=d.getElementsByTagName('script')[0]; g.async=true; g.src='https://cdn.matomo.cloud/iso.matomo.cloud/container_dINwYKex.js'; s.parentNode.insertBefore(g,s); </script>  <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>ISO - Healthcare cybersecurity: Diagnosing risks, prescribing solutions </title> <link rel="preload" as="font" type="font/woff2" href="/modules/isoorg-template/fonts/inter/Inter.var.woff2?v=3.19" crossorigin/> <link rel="stylesheet" href="/modules/isoorg-template/css/wood.bootstrap.min.css?202411272043" media="screen,print,handheld" type="text/css"/> <link rel="preload" href="/modules/isoorg-template/css/wood.iso.min.css?202411272043" as="style" onload="this.onload=null;this.rel='stylesheet'"> <noscript><link rel="stylesheet" href="/modules/isoorg-template/css/wood.iso.min.css?202411272043"></noscript>  <link rel="apple-touch-icon-precomposed" href="/modules/isoorg-template/img/iso/favicon/red/apple-touch-icon-152x152-precomposed.png"> <link rel="shortcut icon" href="/modules/isoorg-template/img/iso/favicon/red/favicon.ico"> <meta name="msapplication-TileColor" content="#eee"> <meta name="msapplication-TileImage" content="/modules/isoorg-template/img/iso/favicon/red/mstile-144x144.png">  <meta name="theme-color" content="#333"> <script type="module"> let basketWidgetLoaderScript = document.createElement('script'); basketWidgetLoaderScript.src = '/webstore/basket-widget/assets/js/basket-widget-loader.js'; document.head.appendChild(basketWidgetLoaderScript); basketWidgetLoaderScript.onload = () => { const cartElem = document.getElementById('shoppingCart'); if (cartElem) { cartElem.onclick = function(event) { return loadWebComponentsLoaderAndWidget(this, event); }; } } </script> <script type="application/json" id="jahia-data-ctx">{"contextPath":"","lang":"en","uilang":"en","siteUuid":"439146f8-677e-4dde-b6c6-b692b7534f52","wcag":false,"ckeCfg":""}</script> <script type="application/json" id="jahia-data-ck">{"path":"/modules/ckeditor/javascript/","lng":"en_US"}</script> <script src="/javascript/initJahiaContext.js"></script> <link id="staticAssetCSS0" rel="stylesheet" href="/modules/jahia-algolia/css/simpleSearch.css?1719494378710" media="screen" type="text/css"/> <script id="staticAssetJavascript0" src="/modules/isoorg-template/javascript/wood.full.min.js?1729842151563" defer></script> <script id="staticAssetJavascript1" src="/modules/isoorg-template/javascript/custom.js?1729842151563" defer></script> <script id="staticAssetJavascript2" src="/modules/jquery/javascript/jquery-1.12.4.min.js?1622554272438" ></script> <script id="staticAssetJavascript3" src="/modules/assets/javascript/jquery.jahia.min.js?1588604535758" ></script> <script id="staticAssetJavascript4" src="/modules/jahia-algolia/javascript/searchCommon.js?1719494378710" defer></script> <script id="staticAssetJavascript5" src="/modules/jahia-algolia/javascript/simpleSearch.js?1719494378710" defer></script> <script id="staticAssetJavascript6" src="/modules/jahia-algolia/javascript/autocomplete.js?1719494378710" defer></script> <style> nav[role="navigation"]:has(.ticker--live) { background-color: var(--bs-brand)!important; } nav[role="navigation"]:has(.ticker--live) > .container { gap: 1rem; } nav[role="navigation"]:has(.ticker--live) #utilities > li:not(#lang-switcher) { display: none!important; } .card-footer:has(.ticker--live) { background-color: var(--bs-dark)!important; color: white; } .card-footer:has(.ticker--live) a { color: white; } .ticker:has(.ticker--live) { white-space: normal; } .ticker--live .ticker__icon { animation: live 1s infinite; } @keyframes live { 0% { color: transparent; } 50% { color: white; } 100% { color: transparent; } } .its-standard [data-status] {display: none; }</style>  <script>(function(h,o,t,j,a,r){ h.hj=h.hj||function(){(h.hj.q=h.hj.q||[]).push(arguments)}; h._hjSettings={hjid:2510805,hjsv:6}; a=o.getElementsByTagName('head')[0]; r=o.createElement('script');r.async=1; r.src=t+h._hjSettings.hjid+j+h._hjSettings.hjsv; a.appendChild(r);})(window,document,'https://static.hotjar.com/c/hotjar-','.js?sv=');</script> <script src="https://cdn.jsdelivr.net/npm/algoliasearch@4.22.1/dist/algoliasearch-lite.umd.js" integrity="sha256-pxkGFjfnFWYGOtV9uhCWK/spKiGS0Z7gVDKYm39LyfM=" crossorigin="anonymous"></script> <script src="https://cdn.jsdelivr.net/npm/instantsearch.js@4.66.0/dist/instantsearch.production.min.js" integrity="sha256-lKV2os1BMDtHxNVG6JQWSPYDUouULGz/nEI1z2VMKEM=" crossorigin="anonymous"></script> <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/instantsearch.css@8.1.0/themes/reset-min.css" integrity="sha256-2AeJLzExpZvqLUxMfcs+4DWcMwNfpnjUeAAvEtPr0wU=" crossorigin="anonymous"> <script src="https://cdn.jsdelivr.net/npm/@algolia/autocomplete-js"></script> <script src="https://cdn.jsdelivr.net/npm/@algolia/autocomplete-plugin-recent-searches"></script> <script src="https://cdn.jsdelivr.net/npm/@algolia/autocomplete-plugin-query-suggestions"></script> <script> const { autocomplete } = window['@algolia/autocomplete-js']; const { createLocalStorageRecentSearchesPlugin } = window['@algolia/autocomplete-plugin-recent-searches']; const { createQuerySuggestionsPlugin } = window['@algolia/autocomplete-plugin-query-suggestions']; </script> <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@algolia/autocomplete-theme-classic" /> <script type="text/javascript"> const algolia = { settings: { appID: 'JCL49WV5AR', apiKey: 'MzcxYjJlODU3ZmEwYmRhZTc0NTZlODNlZmUwYzVjNDRiZDEzMzRjMjYwNTAwODU3YmIzNjEwZmNjNDFlOTBjYXJlc3RyaWN0SW5kaWNlcz1QUk9EX2lzb29yZ19lbiUyQ1BST0RfaXNvb3JnX2VuX2F1dG9jb21wbGV0ZQ==', index : { name: 'PROD_isoorg_en' }, autocompleteDebounceTime : 500 }, instantSearch: undefined, autocomplete: [], pageDisplaysInstantSearch: false } //autocomplete initialize jQuery(document).ready(function() { algolia.autocomplete .filter((settings) => settings.containerID !== undefined && settings.containerID.length > 0) .forEach((settings) => settings.setQuery = startAutocomplete(settings).setQueryCB) }) </script> <script type="text/javascript"> { const currentAutocomplete = { containerID: '#autocomplete_6ef5776a-742e-4a17-85c1-b61490f0b78b', placeholder: 'Search', initialStateQuery: undefined, displaysInstantSearch: false, searchPageUrl: '/search.html', search: undefined, setQuery: undefined, autocompleteDisabled: true, autocompleteKeystrokes: 3 } algolia.autocomplete.push(currentAutocomplete) if (false) { if (algolia.pageDisplaysInstantSearch) { console.error("Impossible to display more than one InstantSearch on the same page") } else { algolia.pageDisplaysInstantSearch = true } } } </script> <script src="/modules/fwk-module/javascript/countable.min.js" defer></script> <script type="module"> $(document).ready(function () { // Counts the number of words in the #content and renders the minutes to read it in .reading-time // More info on https://sacha.me/Countable const area = document.getElementById('articleContainer'); Countable.count(area, function (counter) { var wpm = 200; var estimatedRaw = counter.words / wpm; var minutes = Math.round(estimatedRaw); if(minutes < 2) {minutes=2;} /* to avoid '1 minutes' */ $('.reading-time').html(minutes); }); }); </script>  <meta name="twitter:site" content="@isostandards" />  <meta property="og:site_name" content="ISO" /> <meta property="og:url" content="https://www.iso.org/healthcare/cybersecurity" /> <meta property="og:type" content="article" />  <meta name="thumbnail" content="https://www.iso.org/files/live/sites/isoorg/files/news/insights/healthcare/Healthcare_Evergreen_Healthcare%20cybersecurity.png/thumbnails/1200x600" /> <meta name="twitter:card" content="summary_large_image" /> <meta name="twitter:image" content="https://www.iso.org/files/live/sites/isoorg/files/news/insights/healthcare/Healthcare_Evergreen_Healthcare%20cybersecurity.png/thumbnails/1200x600" /> <meta property="og:image" content="https://www.iso.org/files/live/sites/isoorg/files/news/insights/healthcare/Healthcare_Evergreen_Healthcare%20cybersecurity.png/thumbnails/1200x600" /> <meta property="og:image:alt" content="" />  <meta name="twitter:title" content="Healthcare cybersecurity: Diagnosing risks, prescribing solutions " /> <meta property="og:title" content="Healthcare cybersecurity: Diagnosing risks, prescribing solutions " />  <meta name="twitter:description" content="Cyber-attacks can severely impact personal lives and put patients at risk of harm. That’s why cybersecurity is vital for healthcare organizations to protect patient wellbeing and privacy at all times." /> <meta property="og:description" content="Cyber-attacks can severely impact personal lives and put patients at risk of harm. That’s why cybersecurity is vital for healthcare organizations to protect patient wellbeing and privacy at all times." /> <meta name="description" content="Cyber-attacks can severely impact personal lives and put patients at risk of harm. That’s why cybersecurity is vital for healthcare organizations to protect patient wellbeing and privacy at all times." />  <meta property="fb:admins" content="100001440003305" />  <meta name="pubdate" content="20250128" /> <script src="https://www.google.com/recaptcha/api.js?render=6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA" defer></script> <script type="text/javascript" src="/modules/CsrfServlet"></script> </head>  <body class="theme-red lang-en fwk-news is-prod is-live" id="page-0bc86cac-fe38-4582-8bb1-ba7a8fd5e819"> <a id="page-top" class="skip-navigation btn btn-info visually-hidden visually-hidden-focusable" href="#content">Skip to main content</a> <nav role="navigation" aria-label="Utility Navigation" class="nav-utility navbar-expand-lg text-sm navbar-dark bg-darkergray text-light"> <div class="container d-flex justify-content-between"> <div class="ticker text-truncate float-start"></div> <ul class="nav d-flex justify-content-end justify-content-sm-around justify-content-md-end" id="utilities"> <li class="nav-item d-none d-sm-block"> <a href="https://login.iso.org" class="nav-link d-flex align-items-center" title="ISO's applications portal"><i class="bi-grid-3x3-gap-fill"></i> Applications</a> </li> <li class="nav-item d-none d-sm-block"> <a href="https://www.iso.org/obp/ui/en/" class="nav-link d-flex align-items-center" title="Online Browsing Platform"><i class="bi-journal-text"></i> OBP</a> </li> <li class="nav-item dropdown" id="lang-switcher"> <a id="lang-dropdown" class="nav-link dropdown-toggle" data-bs-toggle="dropdown" href="#" aria-expanded="false">English</a> <ul class="dropdown-menu dropdown-menu-end" role="menu" aria-labelledby="lang-dropdown"> <li class="lang-es "><a class="dropdown-item " href="/es/asistencia-sanitaria/cyberseguridad">español</a></li><li class="lang-fr "><a class="dropdown-item " href="/fr/soins-sante/cybersecurite">français</a></li><li class="lang-ru "><a class="dropdown-item " href="/ru/healthcare/cybersecurity">русский</a></li></ul> </li></ul> </div> </nav>  <header class="header-bootstrap sticky-top">  <nav class="navbar nav-iso navbar-expand-lg navbar-light shadow-md bg-white text-dark"> <div class="container"> <a class="logo logo-square isologo logo-sm" href="/home.html" title="International Organization for Standardization" alt="ISO logo"></a> <div class="isologo-print"><img loading="lazy" fetchpriority="low" src="/modules/isoorg-template/img/iso/iso-logo-print.gif" alt="ISO logo for print" width="50" height="50"/></div> <button class="btn btn-light navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#mainNav" aria-controls="mainNav" aria-expanded="false" aria-label="Toggle navigation"> <div class="navbar-toggler-icon-animated"><span></span><span></span><span></span><span></span></div><span class="visually-hidden-xs"> Menu</span> </button>  <nav role="navigation" aria-label="Main Navigation" class="nav-megamenu collapse navbar-collapse flex-lg-grow-0 flex-xxl-grow-1" id="mainNav"><ul role='menubar' class='navbar-nav me-auto mb-lg-0 ps-2 pe-2 nav-level1' ><li role='menuitem' class='nav-item dropdown position-static noChildren firstInLevel' ><a class='nav-link dropdown-toggle megamenu-toggle ' title="Covering almost every product, process or service imaginable, ISO makes standards used everywhere." href='/standards.html'>Standards</a></li><li role='menuitem' class='nav-item dropdown position-static hasChildren' ><a class='nav-link dropdown-toggle megamenu-toggle ' data-bs-toggle="dropdown" aria-expanded="true" href=''>Sectors</a><div role='menubar' class='dropdown-menu megamenu w-100 mt-0 border-0 rounded-0 megamenu-shadow-md nav-level2' aria-labelledby="navbarDropdown" data-bs-popper="none"><div class="container"><div class="row mb-xs-4 my-md-4 megamenu-animate slideUp"><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren firstInLevel' ><a class='nav-link section-head ps-0 ' title="(including medicine and laboratory equipment)" href='/sectors/health'>Health</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' title="(including communication technology, graphics and photography)" href='/sectors/it-technologies'>IT & related technologies</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' title="(including vehicles, parts and infrastructure, freight, packaging and distribution)" href='/sectors/transport'>Transport</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' href='/sectors/environment'>Environmental sustainability</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' title="(Business management, financial and professional services)" href='/sectors/management-services'>Management & services</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' href='/sectors/security-safety-risk'>Security, safety & risk</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 ' title="(including power generation and transport, fuels)" href='/sectors/energy'>Energy</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 disabled' href=''>Food and agriculture</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 disabled' href=''>Building and construction</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 disabled' href=''>Engineering</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren' ><a class='nav-link section-head ps-0 disabled' href=''>Materials</a></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 noChildren lastInLevel' ><a class='nav-link section-head ps-0 disabled' href=''>Diversity and inclusion</a></div></div></div></div></li><li role='menuitem' class='nav-item dropdown position-static noChildren' ><a class='nav-link dropdown-toggle megamenu-toggle ' title="ISO brings together global experts to develop International Standards that help solve problems and drive innovation." href='/about'>About ISO</a></li><li role='menuitem' class='nav-item dropdown position-static hasChildren inPath ' ><a class='nav-link dropdown-toggle megamenu-toggle ' data-bs-toggle="dropdown" aria-expanded="true" href=''>Insights & news</a><div role='menubar' class='dropdown-menu megamenu w-100 mt-0 border-0 rounded-0 megamenu-shadow-md nav-level2' aria-labelledby="navbarDropdown" data-bs-popper="none"><div class="container"><div class="row mb-xs-4 my-md-4 megamenu-animate slideUp"><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 hasChildren inPath firstInLevel' ><a class='nav-link section-head ps-0 disabled' href=''>Insights</a><div role='menubar' class='list-group list-group-flush mt-0 nav-level3' ><div role='menuitem' class='nav-item position-static ms-0 noChildren inPath active firstInLevel' ><a class='nav-link ps-0 ' href='/insights'>All insights</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren' ><a class='nav-link ps-0 ' href='/insights/filtered-list-healthcare'>Healthcare</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren' ><a class='nav-link ps-0 ' href='/insights/filtered-list-artificial-intelligence'>Artificial intelligence</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren lastInLevel' ><a class='nav-link ps-0 ' href='/insights/filtered-list-climate-change'>Climate change</a></div></div></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 hasChildren' ><a class='nav-link section-head ps-0 disabled' href=''> </a><div role='menubar' class='list-group list-group-flush mt-0 nav-level3' ><div role='menuitem' class='nav-item position-static ms-0 noChildren firstInLevel' ><a class='nav-link ps-0 ' href='/insights/filtered-list-information-security'>Cybersecurity</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren' ><a class='nav-link ps-0 ' href='/insights/filtered-list-quality-management'>Quality management</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren lastInLevel' ><a class='nav-link ps-0 ' href='/home/insights-news/navigation-menu-hidden/renewable-energy.html'>Renewable energy</a></div></div></div><div role='menuitem' class='col-xs-6 col-lg-3 mt-0 hasChildren lastInLevel' ><a class='nav-link section-head ps-0 disabled' href=''>News</a><div role='menubar' class='list-group list-group-flush mt-0 nav-level3' ><div role='menuitem' class='nav-item position-static ms-0 noChildren firstInLevel' ><a class='nav-link ps-0 ' href='/insights/thought-leadership'>Expert talk</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren' ><a class='nav-link ps-0 ' href='/insights/standards-world'>Standards world</a></div><div role='menuitem' class='nav-item position-static ms-0 noChildren' ><a class='nav-link ps-0 ' href='/home/insights-news/news/dossier-medias.html'>Media kit</a></div></div></div></div></div></div></li><li role='menuitem' class='nav-item dropdown position-static noChildren' ><a class='nav-link dropdown-toggle megamenu-toggle ' title="Find out how the ISO process bring together global experts to create standards that are chosen the world over." href='/developing-standards.html'>Taking part</a></li><li role='menuitem' class='nav-item dropdown position-static noChildren lastInLevel' ><a class='nav-link dropdown-toggle megamenu-toggle ' title="Are you looking to buy International Standards, guidelines, collections and checklists? They're all right here, in the ISO Store." href='/store.html'>Store</a></li></ul></nav> <form class="navbar-form flex-lg-grow-1" role="search" id="siteSearch"> <div id="autocomplete_6ef5776a-742e-4a17-85c1-b61490f0b78b"></div> </form><a role="button" id="shoppingCart" class="btn btn-light shopping-cart-link bg-white border-0 text-muted d-none d-lg-block" href="/webstore/checkout?memberId=ISO&guilang=en" title="Shopping cart" aria-label="Shopping cart" style-="display:none;"> <i class="bi-cart"></i><span id="cartText" class="visually-hidden-xs ms-1" style="display: none;"> Cart</span> </a> </div> </nav> </header>  <main role="main" id="content" class="acer" aria-label="Content" tabindex="-1"> <article class="hentry" itemscope itemtype="https://schema.org/Article" id="articleContainer"> <section> <div class="container"> <div class="row row-title row-top justify-content-center"> <div class="col-md-12 col-xl-8"> <h1 data-noindex="true">Healthcare cybersecurity: Diagnosing risks, prescribing solutions </h1> <figure class="width-100pct fig-srcset inColCustom" data-noindex="true"> <div class="img-container"> <img fetchpriority="high" src="/files/live/sites/isoorg/files/news/insights/healthcare/Healthcare_Evergreen_Healthcare%20cybersecurity.svg" class="img-fluid" alt="" /> </div> </figure> </div> </div> <div class="row justify-content-center"> <div class="col-md-9 col-lg-7 col-xl-6"> <div class="entry-abstract" itemprop="abstract"><p>Cybersecurity has become increasingly critical in the digital age, as organizations across all sectors face growing threats from cybercriminals. Imagine hackers breached a small <a href="/healthcare" title="Healthcare-digital">healthcare </a>practice through “phishing” – sending a scam email, and gaining access to sensitive patient data, including medical records. Now imagine Sarah Johnson, a 35-year-old teacher and a patient at this practice, had her identity stolen. The culprits used her information to order medications and file fraudulent insurance claims, causing Sarah immense stress and forcing her to spend countless hours resolving the fallout.</p> <p>Cybersecurity challenges in healthcare are unique, due to the sensitive nature of patient data and the <strong>use of network-connected medical devices </strong>for launching “horizontal” attacks on other information systems. Cyber-attacks can severely impact personal lives – to the point of derailing them – and put patients at risk of harm. They can also shut down entire medical networks and, using “ransomware”, the operation of entire hospitals. That’s why cybersecurity is vital for healthcare organizations to protect patient wellbeing and privacy at all times.</p> <p>To capitalize on the benefits of telemedicine and broader healthcare services, without jeopardizing the welfare of patients, healthcare cybersecurity must be a top priority. This article explores the <strong>importance of cybersecurity in healthcare</strong> and provides an overview of key concepts, risks, best practice and regulations. With actionable insights, healthcare providers can strengthen their defences against increasingly sophisticated cyber threats.</p> </div> </div> </div> <div class="row row-middle justify-content-center"> <div class="col-md-9 col-lg-7 col-xl-6"> <h2 class="h3">Table of contents</h2> <div id="toc">Enable Javascript to view table</div> <script type="module" defer> if (document.querySelector("#toc") != null) { // Create a list and update its class var toc = document.createElement("ul"); toc.classList.add("toc-list"); // Loop on headings let idx = 0; document.querySelectorAll('h2:not([class])').forEach(heading => { let title = heading.textContent; idx = idx + 1; heading.id = "toc" + idx; let href = "#toc" + idx; let tocElement = document.createElement("li"); tocElement.classList.add("toc-item"); let tocElementAnchor = document.createElement("a"); tocElementAnchor.setAttribute('href', href); tocElementAnchor.setAttribute('title', title); tocElementAnchor.classList.add("page-scroll"); tocElementAnchor.textContent = title; // Append the element to .container tocElement.appendChild(tocElementAnchor); toc.appendChild(tocElement); }); document.getElementById("toc").textContent = ''; document.querySelector("#toc"). appendChild(toc); } </script> </div> </div> <div class="row justify-content-center"> <style> @media only screen and (min-width: 992px) { #newsBody figure.width-100pct.landscape, #newsBody .emphasis { margin-inline: -10%; width: 120%; max-width: calc(66ch + 20%); } } #newsBody .emphasis { margin-block: 3.75rem; } #newsBody .emphasis > * { text-align: center; margin-inline: auto; max-width: 55ch; } </style> <div class="col-md-9 col-lg-7 col-xl-6" id="newsBody"> <h2>What is healthcare cybersecurity?</h2> <p>Healthcare cybersecurity refers to the measures and systems that can be used to prevent cybercrime from happening. Healthcare cybersecurity solutions aim to perform two functions: protect the privacy and security of patient information while also maintaining the integrity and accessibility of critical systems and infrastructure that healthcare organizations rely on to deliver care and save lives. These solutions are crucial – both for <strong>building patient trust</strong> and <strong>ensuring compliance</strong> with healthcare cybersecurity regulations.</p> <p>The scope of healthcare cybersecurity solutions is broad, ranging from basic practices such as staff training and regular software updates to more advanced measures. These include safeguarding connected healthcare devices and equipment (e.g. MRI machines, X-ray systems and Internet of Things devices) that are becoming integral to our healthcare networks.</p><h2>Unveiling cybersecurity risks in healthcare</h2> <p>By definition, healthcare organizations rely on complex systems made up of many moving parts. This creates fault lines and weak points that cybercriminals can exploit. Some of the most common vulnerabilities include:</p> <ul> <li><strong>Legacy systems</strong>: Many healthcare institutions rely on outdated software and operating systems. These legacy systems contain loopholes that hackers can exploit to gain access.</li> <li><strong>Unprotected medical devices</strong>: Digitally connected medical devices like MRI machines and heart monitors can be hacked into, if not safeguarded with the proper protocols.</li> <li><strong>Human error</strong>: Healthcare employees may fall victim to phishing emails or other communication-based attacks, allowing hackers to infiltrate systems and steal data.</li> <li><strong>Third parties</strong>: Healthcare organizations share sensitive data with third-party vendors. If these vendors have poor cybersecurity, it can put healthcare data at risk.</li> </ul> <p>These weaknesses expose healthcare organizations to a broad range of attacks, including malicious software, such as ransomware, or targeted fraud operations like phishing scams. It may feel as though threats are lurking everywhere at all times – an alarming prospect for the medical industry. However, there are several healthcare cybersecurity solutions that providers and their staff can consider to promptly reduce their exposure to cyberthreats.</p><div class="emphasis emphasis-gray clearfix"> <div class="" id="subscribe"> <h4>Sign up for email updates</h4> <p>Register for additional resources and updates on health topics and related standards!</p><form method="POST" action="https://iso272.activehosted.com/proc.php" id="_form_26_" class="_form _form_26 _inline-form _dark" novalidate> <input type="hidden" name="u" value="26" /> <input type="hidden" name="f" value="26" /> <input type="hidden" name="s" /> <input type="hidden" name="c" value="0" /> <input type="hidden" name="m" value="0" /> <input type="hidden" name="act" value="sub" /> <input type="hidden" name="v" value="2" /> <input type="hidden" name="or" value="9417b9cd52ff6c742e176a370ed5442a" /> <style> ._error { width: 100%; padding: 0.5em 1.25em; text-align: left; } .grecaptcha-badge { visibility: hidden; } </style> <div class="_form-content"> <div class="input-group input-group-round mb-3"> <input type="text" id="email" class="form-control" name="email" placeholder="Email" aria-label="Email" aria-describedby="_form_26_submit" required/> <input type="hidden" id="recaptchaResponse" name="recaptcha_response"> <button id="_form_26_submit" class="_submit btn btn-primary" type="submit" class="g-recaptcha" data-sitekey="6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA" data-callback='onSubmit' data-action='submit'> Subscribe</button> </div> </div> <div class="_form-thank-you mb-3" style="display:none;"> <p><strong>Almost done! </strong><br /> You are only one step away from joining the ISO subscriber list. Please confirm your subscription by clicking on the email we've just sent to you. You will not be registered until you confirm your subscription. If you can't find the email, kindly check your spam folder and/or the promotions tab (if you use Gmail).</p></div> </form> <script type="text/javascript"> if (document.getElementsByClassName("is-prod is-live")[0]) { console.debug = function () {} }; // redefine console.debug on PROD+LIVE window._check_reCaptcha_26 = function() { grecaptcha.ready(function() { grecaptcha.execute('6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA', {action: 'submit'}).then(function (token) { document.getElementById('recaptchaResponse').value = token; // console.debug('token = ' + token); let urlRestApi = "https://recaptchaenterprise.googleapis.com/v1/projects/iso-website-1722850679238/assessments?key=AIzaSyBzn_mnNayynzq0NemiOop0b9eLKaoiViE"; let jsonRequest = { event: { token: token, expectedAction: "submit", siteKey: "6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA" } } // Verify the token and get the score fetch(urlRestApi, { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(jsonRequest) }).then(response => response.json()).then(data => { console.debug("data = " + JSON.stringify(data)); if (data.tokenProperties.valid && data.riskAnalysis.score >= 0.5) { // If the score is good, submit the form // console.debug("reCaptcha validation: " + data.tokenProperties.valid); console.debug("reCaptcha score: " + data.riskAnalysis.score); var _form_serialize_26 = function(form){if(!form||form.nodeName!=="FORM"){return }var i,j,q=[];for(i=0;i<form.elements.length;i++){if(form.elements[i].name===""){continue}switch(form.elements[i].nodeName){case"INPUT":switch(form.elements[i].type){case"tel":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].previousSibling.querySelector('div.iti__selected-dial-code').innerText)+encodeURIComponent(" ")+encodeURIComponent(form.elements[i].value));break;case"text":case"number":case"date":case"time":case"hidden":case"password":case"button":case"reset":case"submit":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"checkbox":case"radio":if(form.elements[i].checked){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value))}break;case"file":break}break;case"TEXTAREA":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"SELECT":switch(form.elements[i].type){case"select-one":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"select-multiple":for(j=0;j<form.elements[i].options.length;j++){if(form.elements[i].options[j].selected){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].options[j].value))}}break}break;case"BUTTON":switch(form.elements[i].type){case"reset":case"submit":case"button":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break}break}}return q.join("&")}; let serialized_26 = _form_serialize_26(document.getElementById('_form_26_')).replace(/%0A/g, '\\n'); _load_script('https://iso272.activehosted.com/proc.php?' + serialized_26 + '&jsonp=true'); console.debug("serialized_ID = " + 26); } else { // Handle the case where the score is too low console.debug('reCAPTCHA verification failed. Please try again.'); console.debug('reCaptcha invalid reason: ' + data.tokenProperties.invalidReason); } }).catch(error => { console.debug('An error occurred. Please try again.'); console.error('Error: ', error); }); }); }); } window._show_thank_you = function(id, message, trackcmp_url, email) { var form = document.getElementById('_form_' + id + '_'), thank_you = form.querySelector('._form-thank-you'); form.querySelector('._form-content').style.display = 'none'; // thank_you.innerHTML = message; thank_you.style.display = 'block'; const vgoAlias = typeof visitorGlobalObjectAlias === 'undefined' ? 'vgo' : visitorGlobalObjectAlias; var visitorObject = window[vgoAlias]; if (email && typeof visitorObject !== 'undefined') { visitorObject('setEmail', email); visitorObject('update'); } else if (typeof(trackcmp_url) != 'undefined' && trackcmp_url) { // Site tracking URL to use after inline form submission. _load_script(trackcmp_url); } if (typeof window._form_callback !== 'undefined') window._form_callback(id); }; window._show_error = function(id, message, html) { var form = document.getElementById('_form_' + id + '_'), err = document.createElement('div'), button = form.querySelector('button'), old_error = form.querySelector('._form_error'); if (old_error) old_error.parentNode.removeChild(old_error); err.innerHTML = message; err.className = '_error-inner _form_error _no_arrow'; var wrapper = document.createElement('div'); wrapper.className = '_form-inner'; wrapper.appendChild(err); button.parentNode.insertBefore(wrapper, button); document.querySelector('[id^="_form"][id$="_submit"]').disabled = false; if (html) { var div = document.createElement('div'); div.className = '_error-html'; div.innerHTML = html; err.appendChild(div); } }; window._load_script = function(url, callback) { var head = document.querySelector('head'), script = document.createElement('script'), r = false; script.type = 'text/javascript'; script.charset = 'utf-8'; script.src = url; if (callback) { script.onload = script.onreadystatechange = function() { if (!r && (!this.readyState || this.readyState == 'complete')) { r = true; callback(); } }; } head.appendChild(script); }; (function() { if (window.location.search.search("excludeform") !== -1) return false; var getCookie = function(name) { var match = document.cookie.match(new RegExp('(^|; )' + name + '=([^;]+)')); return match ? match[2] : null; } var setCookie = function(name, value) { var now = new Date(); var time = now.getTime(); var expireTime = time + 1000 * 60 * 60 * 24 * 365; now.setTime(expireTime); document.cookie = name + '=' + value + '; expires=' + now + ';path=/; Secure; SameSite=Lax;';// cannot be HttpOnly } var addEvent = function(element, event, func) { if (element.addEventListener) { element.addEventListener(event, func); } else { var oldFunc = element['on' + event]; element['on' + event] = function() { oldFunc.apply(this, arguments); func.apply(this, arguments); }; } } var _removed = false; var form_to_submit = document.getElementById('_form_26_'); var allInputs = form_to_submit.querySelectorAll('input, select, textarea'), tooltips = [], submitted = false; var getUrlParam = function(name) { var params = new URLSearchParams(window.location.search); return params.get(name) || false; }; for (var i = 0; i < allInputs.length; i++) { var regexStr = "field\\[(\\d+)\\]"; var results = new RegExp(regexStr).exec(allInputs[i].name); if (results != undefined) { allInputs[i].dataset.name = window.cfields[results[1]]; } else { allInputs[i].dataset.name = allInputs[i].name; } var fieldVal = getUrlParam(allInputs[i].dataset.name); if (fieldVal) { if (allInputs[i].dataset.autofill === "false") { continue; } if (allInputs[i].type == "radio" || allInputs[i].type == "checkbox") { if (allInputs[i].value == fieldVal) { allInputs[i].checked = true; } } else { allInputs[i].value = fieldVal; } } } var remove_tooltips = function() { for (var i = 0; i < tooltips.length; i++) { tooltips[i].tip.parentNode.removeChild(tooltips[i].tip); } tooltips = []; }; var remove_tooltip = function(elem) { for (var i = 0; i < tooltips.length; i++) { if (tooltips[i].elem === elem) { tooltips[i].tip.parentNode.removeChild(tooltips[i].tip); tooltips.splice(i, 1); return; } } }; var create_tooltip = function(elem, text) { var tooltip = document.createElement('div'), arrow = document.createElement('div'), inner = document.createElement('div'), new_tooltip = {}; if (elem.type != 'radio' && elem.type != 'checkbox') { tooltip.className = '_error text-sm text-muted text-start'; arrow.className = '_error-arrow'; inner.className = '_error-inner'; inner.innerHTML = text; tooltip.appendChild(arrow); tooltip.appendChild(inner); elem.parentNode.appendChild(tooltip); } else { tooltip.className = '_error-inner _no_arrow'; tooltip.innerHTML = text; elem.parentNode.insertBefore(tooltip, elem); new_tooltip.no_arrow = true; } new_tooltip.tip = tooltip; new_tooltip.elem = elem; tooltips.push(new_tooltip); return new_tooltip; }; var resize_tooltip = function(tooltip) { var rect = tooltip.elem.getBoundingClientRect(); var doc = document.documentElement, scrollPosition = rect.top - ((window.pageYOffset || doc.scrollTop) - (doc.clientTop || 0)); if (scrollPosition < 40) { tooltip.tip.className = tooltip.tip.className.replace(/ ?(_above|_below) ?/g, '') + ' _below'; } else { tooltip.tip.className = tooltip.tip.className.replace(/ ?(_above|_below) ?/g, '') + ' _above'; } }; var resize_tooltips = function() { if (_removed) return; for (var i = 0; i < tooltips.length; i++) { if (!tooltips[i].no_arrow) resize_tooltip(tooltips[i]); } }; var validate_field = function(elem, remove) { var tooltip = null, value = elem.value, no_error = true; remove ? remove_tooltip(elem) : false; if (elem.type != 'checkbox') elem.className = elem.className.replace(/ ?_has_error ?/g, ''); if (elem.getAttribute('required') !== null) { if (elem.type == 'radio' || (elem.type == 'checkbox' && /any/.test(elem.className))) { var elems = form_to_submit.elements[elem.name]; if (!(elems instanceof NodeList || elems instanceof HTMLCollection) || elems.length <= 1) { no_error = elem.checked; } else { no_error = false; for (var i = 0; i < elems.length; i++) { if (elems[i].checked) no_error = true; } } if (!no_error) { tooltip = create_tooltip(elem, "Please select an option."); } } else if (elem.type =='checkbox') { var elems = form_to_submit.elements[elem.name], found = false, err = []; no_error = true; for (var i = 0; i < elems.length; i++) { if (elems[i].getAttribute('required') === null) continue; if (!found && elems[i] !== elem) return true; found = true; elems[i].className = elems[i].className.replace(/ ?_has_error ?/g, ''); if (!elems[i].checked) { no_error = false; elems[i].className = elems[i].className + ' _has_error'; err.push("Checking %s is required".replace("%s", elems[i].value)); } } if (!no_error) { tooltip = create_tooltip(elem, err.join('<br/>')); } } else if (elem.tagName == 'SELECT') { var selected = true; if (elem.multiple) { selected = false; for (var i = 0; i < elem.options.length; i++) { if (elem.options[i].selected) { selected = true; break; } } } else { for (var i = 0; i < elem.options.length; i++) { if (elem.options[i].selected && (!elem.options[i].value || (elem.options[i].value.match(/\n/g)))) { selected = false; } } } if (!selected) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "Please select an option."); } } else if (value === undefined || value === null || value === '') { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "This field is required"); } } if (no_error && (elem.id == 'field[]' || elem.id == 'ca[11][v]')) { if (elem.className.includes('phone-input-error')) { elem.className = elem.className + ' _has_error'; no_error = false; } } if (no_error && elem.name == 'email') { if (!value.match(/^[\+_a-z0-9-'&=]+(\.[\+_a-z0-9-']+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,})$/i)) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, 'Please enter a valid email address'); } } if (no_error && /date_field/.test(elem.className)) { if (!value.match(/^\d\d\d\d-\d\d-\d\d$/)) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "Enter a valid date."); } } tooltip ? resize_tooltip(tooltip) : false; return no_error; }; var needs_validate = function(el) { if(el.getAttribute('required') !== null){ return true } if(el.name === 'email' && el.value !== ""){ return true } if((el.id == 'field[]' || el.id == 'ca[11][v]') && el.className.includes('phone-input-error')){ return true } return false }; var validate_form = function(e) { var err = form_to_submit.querySelector('._form_error'), no_error = true; if (!submitted) { submitted = true; for (var i = 0, len = allInputs.length; i < len; i++) { var input = allInputs[i]; if (needs_validate(input)) { if (input.type == 'tel') { addEvent(input, 'blur', function() { this.value = this.value.trim(); validate_field(this, true); }); } if (input.type == 'text' || input.type == 'number' || input.type == 'time') { addEvent(input, 'blur', function() { this.value = this.value.trim(); validate_field(this, true); }); addEvent(input, 'input', function() { validate_field(this, true); }); } else if (input.type == 'radio' || input.type == 'checkbox') { (function(el) { var radios = form_to_submit.elements[el.name]; for (var i = 0; i < radios.length; i++) { addEvent(radios[i], 'click', function() { validate_field(el, true); }); } })(input); } else if (input.tagName == 'SELECT') { addEvent(input, 'change', function() { validate_field(this, true); }); } else if (input.type == 'textarea'){ addEvent(input, 'input', function() { validate_field(this, true); }); } } } } remove_tooltips(); for (var i = 0, len = allInputs.length; i < len; i++) { var elem = allInputs[i]; if (needs_validate(elem)) { if (elem.tagName.toLowerCase() !== "select") { elem.value = elem.value.trim(); } validate_field(elem) ? true : no_error = false; } } if (!no_error && e) { e.preventDefault(); } resize_tooltips(); return no_error; }; addEvent(window, 'resize', resize_tooltips); addEvent(window, 'scroll', resize_tooltips); var hidePhoneInputError = function(inputId) { var errorMessage = document.getElementById("error-msg-" + inputId); var input = document.getElementById(inputId); errorMessage.classList.remove("phone-error"); errorMessage.classList.add("phone-error-hidden"); input.classList.remove("phone-input-error"); }; var initializePhoneInput = function(input, defaultCountry) { return window.intlTelInput(input, { utilsScript: "https://unpkg.com/intl-tel-input@17.0.18/build/js/utils.js", autoHideDialCode: false, separateDialCode: true, initialCountry: defaultCountry, preferredCountries: [] }); } var setPhoneInputEventListeners = function(inputId, input, iti) { input.addEventListener('blur', function() { var errorMessage = document.getElementById("error-msg-" + inputId); if (input.value.trim()) { if (iti.isValidNumber()) { iti.setNumber(iti.getNumber()); if (errorMessage.classList.contains("phone-error")){ hidePhoneInputError(inputId); } } else { showPhoneInputError(inputId) } } else { if (errorMessage.classList.contains("phone-error")){ hidePhoneInputError(inputId); } } }); input.addEventListener("countrychange", function() { iti.setNumber(''); }); input.addEventListener("keydown", function(e) { var charCode = (e.which) ? e.which : e.keyCode; if (charCode > 31 && (charCode < 48 || charCode > 57) && charCode !== 8) { e.preventDefault(); } }); }; var showPhoneInputError = function(inputId) { var errorMessage = document.getElementById("error-msg-" + inputId); var input = document.getElementById(inputId); errorMessage.classList.add("phone-error"); errorMessage.classList.remove("phone-error-hidden"); input.classList.add("phone-input-error"); }; var form_submit = function(e) { e.preventDefault(); if (validate_form()) { // use this trick to get the submit button & disable it using plain javascript document.querySelector('#_form_26_submit').disabled = true; var _form_serialize_26 = function(form){if(!form||form.nodeName!=="FORM"){return }var i,j,q=[];for(i=0;i<form.elements.length;i++){if(form.elements[i].name===""){continue}switch(form.elements[i].nodeName){case"INPUT":switch(form.elements[i].type){case"tel":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].previousSibling.querySelector('div.iti__selected-dial-code').innerText)+encodeURIComponent(" ")+encodeURIComponent(form.elements[i].value));break;case"text":case"number":case"date":case"time":case"hidden":case"password":case"button":case"reset":case"submit":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"checkbox":case"radio":if(form.elements[i].checked){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value))}break;case"file":break}break;case"TEXTAREA":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"SELECT":switch(form.elements[i].type){case"select-one":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"select-multiple":for(j=0;j<form.elements[i].options.length;j++){if(form.elements[i].options[j].selected){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].options[j].value))}}break}break;case"BUTTON":switch(form.elements[i].type){case"reset":case"submit":case"button":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break}break}}return q.join("&")}; let serialized_26 = _form_serialize_26(document.getElementById('_form_26_')).replace(/%0A/g, '\\n'); var err = form_to_submit.querySelector('._form_error'); err ? err.parentNode.removeChild(err) : false; // We don't check the Google reCaptcha if projectId is null // Site properties: ProjectId is defined => we check the captcha before sending the form _check_reCaptcha_26(); } return false; }; addEvent(form_to_submit, 'submit', form_submit); })(); </script> <details class="text-xs"><summary style="color:inherit">How your data will be used</summary> <p class="pt-2">Please see <a href="/privacy.html" title="privacy-and-copyright">ISO privacy notice</a>. This site is protected by reCAPTCHA and the Google <a href="https://policies.google.com/privacy">Privacy Policy</a> and <a href="https://policies.google.com/terms">Terms of Service</a> apply.</p> </details></div></div><h2>Enhancing medical device security</h2> <p>Medical devices are a key enabler of telehealth, so their seamless and safe use is paramount. Infusion pumps, ventilators and patient monitors – amongst other devices – are <strong>vulnerable to cyber-attacks</strong> due to a number of factors.</p> <p>Many devices run on outdated or unsupported computer operating systems that are susceptible to malware and hacking. If the data transmitted between these devices is not encrypted or is sent over unsafe networks, it could enable criminals to “eavesdrop”. Furthermore, healthcare providers don’t always observe adequate password protection or install the appropriate authentication mechanisms, enabling unauthorized access and control of devices.</p> <p>Thankfully, all of the above points can be addressed with a range of solutions:</p> <ul> <li>Implementing robust <strong>encryption tools</strong>, <strong>password protocols</strong> and <strong>access controls</strong> will go a long way to protecting data transmission and medical device security.</li> <li>Performing regular and thorough <strong>cybersecurity risk assessments</strong> can help identify vulnerabilities.</li> <li>Segmenting the network that supports medical devices, to <strong>isolate particular devices</strong> from the rest of the healthcare network, makes it easier to diagnose potential issues. It can also enable organizations to “quarantine” devices that are compromised to avoid criminals gaining access to the wider network.</li> <li>Training staff on <strong>basic cybersecurity protocols</strong> protects devices, healthcare practices and patients.</li> </ul> <p>Just as important as these specific action points, the healthcare sector, as a whole, must work together, along with policymakers and business innovators, to stay one step ahead in this rapidly changing landscape. Government regulatory agencies, for instance, are increasingly requiring evidence of cybersecure systems as a condition for device use within their jurisdiction, along with a management and surveillance plan once these systems are operational.</p><h2>How to boost your healthcare cybersecurity</h2> <p>In order to address the vulnerabilities listed above, getting staff trained up on basic cybersecurity awareness is essential to <strong>strengthen first lines of defence</strong>. For example, are administrative staff and other employees educated on the top cybersecurity threats in healthcare? Even knowing the difference between ransomware and phishing can have a significant impact.</p> <p>On the technological front, it’s important to look at the whole network of connected systems and tools that enable and support telehealth – from smart medical devices to the networks that connect them, servers that store confidential data, and software that helps everything to run smoothly. By adopting a <strong>holistic approach to network security</strong> that includes technology, people (e.g. training) and processes (e.g. how security is embedded in workflows), vulnerabilities can continue to be managed as the number of connected devices increases.</p> <p>Thankfully, healthcare practices don’t have to overcome their cybersecurity challenges alone. They can consult external experts for guidance and support. Healthcare cybersecurity services offer tailored solutions to address the unique challenges faced by healthcare providers in protecting sensitive patient information and critical medical systems. These include:</p> <ul> <li><strong>Risk assessment</strong>: Monitoring systems and networks helps identify potential intrusions and attacks and form mitigation strategies. This can involve Security Information and Event Management (SIEM) solutions, intrusion detection systems and managed threat detection services.</li> <li><strong>Incident prediction and response</strong>: Proactive probing like attack simulations can help anticipate attacks. In the event of a breach, foresight can significantly aid in containing and neutralizing threats. It is also important to create a cybersecurity culture where security is embedded at every echelon of an organization.</li> <li><strong>Policy and compliance</strong>: Healthcare organizations must comply with regulations at all times. Comprehensive policies that align with organization’s particular needs, while adhering to international and industry-specific requirements, ensure they can walk that fine line with confidence.</li> </ul> <p>By leveraging healthcare cybersecurity services, healthcare providers can enhance their cybersecurity posture, mitigate risks, and uphold the confidentiality and integrity of patient data and critical healthcare systems.</p><ul class="list-callout"><li><a href="/standard/27001" title="ISO/IEC 27001:2022 - Information security, cybersecurity and privacy protection — Information security management systems — Requirements" ><span class="entry-name">ISO/IEC 27001</span></a> <span class="entry-title">Information security management systems</span></li><li><a href="/standard/75652.html" title="ISO/IEC 27002:2022 - Information security, cybersecurity and privacy protection — Information security controls" ><span class="entry-name">ISO/IEC 27002</span></a> <span class="entry-title">Information security controls</span></li><li><a href="/standard/71670.html" title="ISO/IEC 27701:2019 - Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines" ><span class="entry-name">ISO/IEC 27701</span></a> <span class="entry-title">Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management</span></li><li><a href="/standard/62777.html" title="ISO 27799:2016 - Health informatics — Information security management in health using ISO/IEC 27002" ><span class="entry-name">ISO 27799</span></a> <span class="entry-title">Information security management in health using ISO/IEC 27002</span></li></ul><h2>Healthcare cybersecurity best practices</h2> <p>So why haven’t all healthcare organizations done this already? At its core, the challenge of health cybersecurity lies in locking huge amounts of data in a secure vault while simultaneously <strong>maintaining a seamless patient experience</strong> – all in a rapidly evolving and nuanced regulatory environment. </p> <p>To address this, healthcare organizations can explore a variety of options to bolster their cybersecurity apparatus. These include technological solutions like encryption, firewalls, intrusion detection systems and access controls, as well as institutional changes, such as implementing robust policies and training programmes to comply with existing healthcare cybersecurity regulations.</p> <p>To ensure they join all the dots in their healthcare cybersecurity plan, leading healthcare providers know it’s crucial to <strong>examine their wider IT security strategy</strong> across all operational aspects. Numerous national and international standards are available to guide this process. <a href="/standard/27001" title="Information security, cybersecurity and privacy protection – Information security management systems – Requirements">ISO/IEC 27001</a> is an IT cybersecurity standard that lays the groundwork for an effective information security management system, while <a href="/standard/75652.html" title="Information security, cybersecurity and privacy protection – Information security controls">ISO/IEC 27002</a> provides a set of information security controls and implementation guidance. Together, these standards can help organizations protect their most important systems, while remaining agile and responsive in the event of an incident or data breach.</p> <p>A vital component of any ISO/IEC 27001 strategy is the careful management of patient healthcare data and medical records. Enter <a href="/standard/71670.html" title="Security techniques – Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management – Requirements and guidelines">ISO/IEC 27701</a>, which empowers organizations to safeguard personal information through a robust privacy information management system. Complementing this, <a href="/standard/62777.html" title="Health informatics – Information security management in health using ISO/IEC 27002">ISO 27799</a> provides customized guidance for applying ISO/IEC 27002 specifically to information security management within the healthcare sector.</p> <p>Finally, cloud-based services and storage policies are a substantial part of any comprehensive security protocol. <a href="/standard/43757.html" title="Information technology – Security techniques – Code of practice for information security controls based on ISO/IEC 27002 for cloud services">ISO/IEC 27017</a> offers enhanced controls for both providers and customers, defining roles and responsibilities to ensure cloud services uphold a level of security consistent with other components of the healthcare IT ecosystem.</p><h2>Building a cybersecurity culture in healthcare</h2> <p>As with anything health-related, prevention is always the best strategy. Healthcare cybersecurity is about much more than investing in technology; it’s about empowering people to keep the safety of data front of mind. While training and awareness programmes are certainly a key part of this, healthcare organizations should not underestimate the<strong> power of leadership</strong>. Leadership plays a pivotal role not just in endorsing cybersecurity but in championing it – building a strong cybersecurity culture.</p> <p>Because cybersecurity shouldn’t be an afterthought. Patients like Sarah shouldn’t have to worry about the safety of their data when they visit their physician. As patients, we understand the critical importance of cybersecurity in healthcare, and so, too, should our health providers. We should all be able to access healthcare with absolute certainty and confidence. For this to happen, cybersecurity must be woven into the very fabric of daily operations. Through concerted efforts and proactive communication, healthcare organizations can <strong>build a resilient cybersecurity culture</strong> that thrives not just within their own ranks, but throughout the entire industry.</p></div> </div> </div> </section> </article><div class="nav-breadcrumb print-footer bg-black"> <div class="container"> <div class="row"> <div class="col-sm-10 small">  <ol class="breadcrumb"> <li class="breadcrumb-item"><a href="/home.html" title="Home page"><i class="bi-house" aria-hidden="true"></i></a></li> <li class="breadcrumb-item"> Insights & news</li> <li class="breadcrumb-item"> Insights</li> <li class="breadcrumb-item"> <a href="/insights">All insights</a> </li> <li class="breadcrumb-item"> Healthcare cybersecurity: Diagnosing risks, prescribing …</li></ol></div> <div class="col-sm-2 hidden-print text-end small mt-3 mt-sm-0"> <a role="button" class="dropdown-toggle text-white collapsed" data-bs-toggle="collapse" href="#collapseSitemap" target="_self" aria-expanded="false" aria-controls="collapseSitemap">Sitemap</a> </div> </div> <div class="collapse border-top" id="collapseSitemap"> <div class="row">  <nav role="navigation" aria-label="Sitemap" class="sitemap-footer clearfix small" id="nav-sitemap"><ul role='menubar' class='list-inline-5 clearfix nav-level1' ><li role='menuitem' class=' hasChildren firstInLevel' ><a class='nav-link ' title="Covering almost every product, process or service imaginable, ISO makes standards used everywhere." href='/standards.html'>Standards</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' title="Whether you run a business, work for a company or government, or you are a consumer looking for goods and services that meet customer expectations: Find out what standards can do for you." href='/benefits-of-standards.html'>Benefits</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="Here you can discover some of the best-known and most widely-used standards, as well as those that address recently emerged challenges affecting us all. " href='/popular-standards.html'>Popular standards</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="A set of processes that show your product, service or system meets the requirements of a standard." href='/conformity-assessment.html'>Conformity assessment</a></li><li role='menuitem' class=' noChildren lastInLevel' ><a class='nav-link ' title="Organizations and companies looking to contribute to the SDGs will find that International Standards provide effective tools to help them rise to the challenge." href='/sdg'>SDGs</a></li></ul></li><li role='menuitem' class=' hasChildren' ><a class='nav-link disabled' data-bs-toggle="dropdown" aria-expanded="true" href=''>Sectors</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' title="(including medicine and laboratory equipment)" href='/sectors/health'>Health</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="(including communication technology, graphics and photography)" href='/sectors/it-technologies'>IT & related technologies</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="(including vehicles, parts and infrastructure, freight, packaging and distribution)" href='/sectors/transport'>Transport</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/sectors/environment'>Environmental sustainability</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="(Business management, financial and professional services)" href='/sectors/management-services'>Management & services</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/sectors/security-safety-risk'>Security, safety & risk</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="(including power generation and transport, fuels)" href='/sectors/energy'>Energy</a></li></ul></li><li role='menuitem' class=' hasChildren' ><a class='nav-link ' title="ISO brings together global experts to develop International Standards that help solve problems and drive innovation." href='/about'>About ISO</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' title="Find out how we develop and publish international standards by bringing together more than 160 members and more than 45,000 experts" href='/what-we-do.html'>What we do</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/structure.html'>Structure</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="The members of the International Organization for Standardization are 172 national standards bodies, each representing ISO in their country." href='/about/members'>Members</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="Find out what's coming up and what you might have missed." href='/events.html'>Events</a></li><li role='menuitem' class=' noChildren lastInLevel' ><a class='nav-link ' title="Making lives easier, safer and better. Our Strategy outlines our vision and our mission for the next 10 years and a set of goals and priorities to help us get there." href='/strategy2030.html'>Strategy</a></li></ul></li><li role='menuitem' class=' hasChildren inPath ' ><a class='nav-link disabled' data-bs-toggle="dropdown" aria-expanded="true" href=''>Insights & news</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' hasChildren inPath firstInLevel' ><a class='nav-link disabled' href=''>Insights</a><ul role='menubar' class='list-unstyled nav-level3' ><li role='menuitem' class=' noChildren inPath active firstInLevel' ><a class='nav-link ' href='/insights'>All insights</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/insights/filtered-list-healthcare'>Healthcare</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/insights/filtered-list-artificial-intelligence'>Artificial intelligence</a></li><li role='menuitem' class=' noChildren lastInLevel' ><a class='nav-link ' href='/insights/filtered-list-climate-change'>Climate change</a></li></ul></li><li role='menuitem' class=' hasChildren lastInLevel' ><a class='nav-link disabled' href=''>News</a><ul role='menubar' class='list-unstyled nav-level3' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' href='/insights/thought-leadership'>Expert talk</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/insights/standards-world'>Standards world</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/home/insights-news/news/dossier-medias.html'>Media kit</a></li></ul></li></ul></li><li role='menuitem' class=' hasChildren' ><a class='nav-link ' title="Find out how the ISO process bring together global experts to create standards that are chosen the world over." href='/developing-standards.html'>Taking part</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' title="ISO has put together groups of experts that represent every sector imaginable from soaps to spacecraft, MP3 to coffee. In fact there are more than 250 technical committees. You can find out what they do here." href='/who-develops-standards.html'>Who develops standards</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="The different types of ISO publications." href='/deliverables-all.html'>Deliverables</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/get-involved.html'>Get involved</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="The ISO Climate Action Kit is a collection of case studies from around the world on how standards can be effectively used as a tool for sustainability." href='/ClimateAction.html'>Collaborating to accelerate effective climate action</a></li><li role='menuitem' class=' noChildren lastInLevel' ><a class='nav-link ' title="Resources to support the work of individuals involved in standards development. " href='/resources.html'>Resources</a></li></ul></li><li role='menuitem' class=' hasChildren lastInLevel' ><a class='nav-link ' title="Are you looking to buy International Standards, guidelines, collections and checklists? They're all right here, in the ISO Store." href='/store.html'>Store</a><ul role='menubar' class='list-unstyled nav-level2' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' href='/standards-catalogue/browse-by-ics.html'>Standards catalogue</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' title="ISO publications give insights and guidance into specific applications and show how standards add value." href='/publication-list.html'>Publications and products</a></li></ul></li></ul></nav></div> </div> </div> </div> </main> <footer role="contentinfo" aria-label="Footer" class="footer-iso footer-dark bg-dark"> <div class="container"> <div class="footer-links center-block">  <nav role="navigation" aria-label="Inline Navigation" class="" id=""><ul role='menubar' class='list-inline clearfix nav-level1' ><li role='menuitem' class=' noChildren firstInLevel' ><a class='nav-link ' href='/iso-name-and-logo.html'>ISO name and logo</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/privacy.html'>Privacy Notice</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/copyright.html'>Copyright</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/cookies.html'>Cookie policy</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/media-kit.html'>Media kit</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/working-with-iso.html'>Jobs</a></li><li role='menuitem' class=' noChildren' ><a class='nav-link ' href='/contact-iso.html'>Help and support</a></li></ul></nav><div class="row " > <div class="col-md-6 offset-md-3 col-xl-4 offset-xl-4"><h2 class="h4 pt-3 pb-2" id="isoinsights">Sign up for email updates</h2><form method="POST" action="https://iso272.activehosted.com/proc.php" id="_form_23_" class="_form _form_23 _inline-form _dark" novalidate> <input type="hidden" name="u" value="23" /> <input type="hidden" name="f" value="23" /> <input type="hidden" name="s" /> <input type="hidden" name="c" value="0" /> <input type="hidden" name="m" value="0" /> <input type="hidden" name="act" value="sub" /> <input type="hidden" name="v" value="2" /> <input type="hidden" name="or" value="9417b9cd52ff6c742e176a370ed5442a" /> <style> ._error { width: 100%; padding: 0.5em 1.25em; text-align: left; } .grecaptcha-badge { visibility: hidden; } </style> <div class="_form-content"> <div class="input-group input-group-round mb-3"> <input type="text" id="email" class="form-control" name="email" placeholder="Email" aria-label="Email" aria-describedby="_form_23_submit" required/> <input type="hidden" id="recaptchaResponse" name="recaptcha_response"> <button id="_form_23_submit" class="_submit btn btn-primary" type="submit" class="g-recaptcha" data-sitekey="6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA" data-callback='onSubmit' data-action='submit'> Subscribe</button> </div> </div> <div class="_form-thank-you mb-3" style="display:none;"> <p><strong>Almost done! </strong><br /> You are only one step away from joining the ISO subscriber list. Please confirm your subscription by clicking on the email we've just sent to you. You will not be registered until you confirm your subscription. If you can't find the email, kindly check your spam folder and/or the promotions tab (if you use Gmail).</p></div> </form> <script type="text/javascript"> if (document.getElementsByClassName("is-prod is-live")[0]) { console.debug = function () {} }; // redefine console.debug on PROD+LIVE window._check_reCaptcha_23 = function() { grecaptcha.ready(function() { grecaptcha.execute('6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA', {action: 'submit'}).then(function (token) { document.getElementById('recaptchaResponse').value = token; // console.debug('token = ' + token); let urlRestApi = "https://recaptchaenterprise.googleapis.com/v1/projects/iso-website-1722850679238/assessments?key=AIzaSyBzn_mnNayynzq0NemiOop0b9eLKaoiViE"; let jsonRequest = { event: { token: token, expectedAction: "submit", siteKey: "6Lfvyx8qAAAAAHOXkwbvVobjfLbVzBEnEVRuLtNA" } } // Verify the token and get the score fetch(urlRestApi, { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(jsonRequest) }).then(response => response.json()).then(data => { console.debug("data = " + JSON.stringify(data)); if (data.tokenProperties.valid && data.riskAnalysis.score >= 0.5) { // If the score is good, submit the form // console.debug("reCaptcha validation: " + data.tokenProperties.valid); console.debug("reCaptcha score: " + data.riskAnalysis.score); var _form_serialize_23 = function(form){if(!form||form.nodeName!=="FORM"){return }var i,j,q=[];for(i=0;i<form.elements.length;i++){if(form.elements[i].name===""){continue}switch(form.elements[i].nodeName){case"INPUT":switch(form.elements[i].type){case"tel":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].previousSibling.querySelector('div.iti__selected-dial-code').innerText)+encodeURIComponent(" ")+encodeURIComponent(form.elements[i].value));break;case"text":case"number":case"date":case"time":case"hidden":case"password":case"button":case"reset":case"submit":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"checkbox":case"radio":if(form.elements[i].checked){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value))}break;case"file":break}break;case"TEXTAREA":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"SELECT":switch(form.elements[i].type){case"select-one":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"select-multiple":for(j=0;j<form.elements[i].options.length;j++){if(form.elements[i].options[j].selected){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].options[j].value))}}break}break;case"BUTTON":switch(form.elements[i].type){case"reset":case"submit":case"button":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break}break}}return q.join("&")}; let serialized_23 = _form_serialize_23(document.getElementById('_form_23_')).replace(/%0A/g, '\\n'); _load_script('https://iso272.activehosted.com/proc.php?' + serialized_23 + '&jsonp=true'); console.debug("serialized_ID = " + 23); } else { // Handle the case where the score is too low console.debug('reCAPTCHA verification failed. Please try again.'); console.debug('reCaptcha invalid reason: ' + data.tokenProperties.invalidReason); } }).catch(error => { console.debug('An error occurred. Please try again.'); console.error('Error: ', error); }); }); }); } window._show_thank_you = function(id, message, trackcmp_url, email) { var form = document.getElementById('_form_' + id + '_'), thank_you = form.querySelector('._form-thank-you'); form.querySelector('._form-content').style.display = 'none'; // thank_you.innerHTML = message; thank_you.style.display = 'block'; const vgoAlias = typeof visitorGlobalObjectAlias === 'undefined' ? 'vgo' : visitorGlobalObjectAlias; var visitorObject = window[vgoAlias]; if (email && typeof visitorObject !== 'undefined') { visitorObject('setEmail', email); visitorObject('update'); } else if (typeof(trackcmp_url) != 'undefined' && trackcmp_url) { // Site tracking URL to use after inline form submission. _load_script(trackcmp_url); } if (typeof window._form_callback !== 'undefined') window._form_callback(id); }; window._show_error = function(id, message, html) { var form = document.getElementById('_form_' + id + '_'), err = document.createElement('div'), button = form.querySelector('button'), old_error = form.querySelector('._form_error'); if (old_error) old_error.parentNode.removeChild(old_error); err.innerHTML = message; err.className = '_error-inner _form_error _no_arrow'; var wrapper = document.createElement('div'); wrapper.className = '_form-inner'; wrapper.appendChild(err); button.parentNode.insertBefore(wrapper, button); document.querySelector('[id^="_form"][id$="_submit"]').disabled = false; if (html) { var div = document.createElement('div'); div.className = '_error-html'; div.innerHTML = html; err.appendChild(div); } }; window._load_script = function(url, callback) { var head = document.querySelector('head'), script = document.createElement('script'), r = false; script.type = 'text/javascript'; script.charset = 'utf-8'; script.src = url; if (callback) { script.onload = script.onreadystatechange = function() { if (!r && (!this.readyState || this.readyState == 'complete')) { r = true; callback(); } }; } head.appendChild(script); }; (function() { if (window.location.search.search("excludeform") !== -1) return false; var getCookie = function(name) { var match = document.cookie.match(new RegExp('(^|; )' + name + '=([^;]+)')); return match ? match[2] : null; } var setCookie = function(name, value) { var now = new Date(); var time = now.getTime(); var expireTime = time + 1000 * 60 * 60 * 24 * 365; now.setTime(expireTime); document.cookie = name + '=' + value + '; expires=' + now + ';path=/; Secure; SameSite=Lax;';// cannot be HttpOnly } var addEvent = function(element, event, func) { if (element.addEventListener) { element.addEventListener(event, func); } else { var oldFunc = element['on' + event]; element['on' + event] = function() { oldFunc.apply(this, arguments); func.apply(this, arguments); }; } } var _removed = false; var form_to_submit = document.getElementById('_form_23_'); var allInputs = form_to_submit.querySelectorAll('input, select, textarea'), tooltips = [], submitted = false; var getUrlParam = function(name) { var params = new URLSearchParams(window.location.search); return params.get(name) || false; }; for (var i = 0; i < allInputs.length; i++) { var regexStr = "field\\[(\\d+)\\]"; var results = new RegExp(regexStr).exec(allInputs[i].name); if (results != undefined) { allInputs[i].dataset.name = window.cfields[results[1]]; } else { allInputs[i].dataset.name = allInputs[i].name; } var fieldVal = getUrlParam(allInputs[i].dataset.name); if (fieldVal) { if (allInputs[i].dataset.autofill === "false") { continue; } if (allInputs[i].type == "radio" || allInputs[i].type == "checkbox") { if (allInputs[i].value == fieldVal) { allInputs[i].checked = true; } } else { allInputs[i].value = fieldVal; } } } var remove_tooltips = function() { for (var i = 0; i < tooltips.length; i++) { tooltips[i].tip.parentNode.removeChild(tooltips[i].tip); } tooltips = []; }; var remove_tooltip = function(elem) { for (var i = 0; i < tooltips.length; i++) { if (tooltips[i].elem === elem) { tooltips[i].tip.parentNode.removeChild(tooltips[i].tip); tooltips.splice(i, 1); return; } } }; var create_tooltip = function(elem, text) { var tooltip = document.createElement('div'), arrow = document.createElement('div'), inner = document.createElement('div'), new_tooltip = {}; if (elem.type != 'radio' && elem.type != 'checkbox') { tooltip.className = '_error text-sm text-muted text-start'; arrow.className = '_error-arrow'; inner.className = '_error-inner'; inner.innerHTML = text; tooltip.appendChild(arrow); tooltip.appendChild(inner); elem.parentNode.appendChild(tooltip); } else { tooltip.className = '_error-inner _no_arrow'; tooltip.innerHTML = text; elem.parentNode.insertBefore(tooltip, elem); new_tooltip.no_arrow = true; } new_tooltip.tip = tooltip; new_tooltip.elem = elem; tooltips.push(new_tooltip); return new_tooltip; }; var resize_tooltip = function(tooltip) { var rect = tooltip.elem.getBoundingClientRect(); var doc = document.documentElement, scrollPosition = rect.top - ((window.pageYOffset || doc.scrollTop) - (doc.clientTop || 0)); if (scrollPosition < 40) { tooltip.tip.className = tooltip.tip.className.replace(/ ?(_above|_below) ?/g, '') + ' _below'; } else { tooltip.tip.className = tooltip.tip.className.replace(/ ?(_above|_below) ?/g, '') + ' _above'; } }; var resize_tooltips = function() { if (_removed) return; for (var i = 0; i < tooltips.length; i++) { if (!tooltips[i].no_arrow) resize_tooltip(tooltips[i]); } }; var validate_field = function(elem, remove) { var tooltip = null, value = elem.value, no_error = true; remove ? remove_tooltip(elem) : false; if (elem.type != 'checkbox') elem.className = elem.className.replace(/ ?_has_error ?/g, ''); if (elem.getAttribute('required') !== null) { if (elem.type == 'radio' || (elem.type == 'checkbox' && /any/.test(elem.className))) { var elems = form_to_submit.elements[elem.name]; if (!(elems instanceof NodeList || elems instanceof HTMLCollection) || elems.length <= 1) { no_error = elem.checked; } else { no_error = false; for (var i = 0; i < elems.length; i++) { if (elems[i].checked) no_error = true; } } if (!no_error) { tooltip = create_tooltip(elem, "Please select an option."); } } else if (elem.type =='checkbox') { var elems = form_to_submit.elements[elem.name], found = false, err = []; no_error = true; for (var i = 0; i < elems.length; i++) { if (elems[i].getAttribute('required') === null) continue; if (!found && elems[i] !== elem) return true; found = true; elems[i].className = elems[i].className.replace(/ ?_has_error ?/g, ''); if (!elems[i].checked) { no_error = false; elems[i].className = elems[i].className + ' _has_error'; err.push("Checking %s is required".replace("%s", elems[i].value)); } } if (!no_error) { tooltip = create_tooltip(elem, err.join('<br/>')); } } else if (elem.tagName == 'SELECT') { var selected = true; if (elem.multiple) { selected = false; for (var i = 0; i < elem.options.length; i++) { if (elem.options[i].selected) { selected = true; break; } } } else { for (var i = 0; i < elem.options.length; i++) { if (elem.options[i].selected && (!elem.options[i].value || (elem.options[i].value.match(/\n/g)))) { selected = false; } } } if (!selected) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "Please select an option."); } } else if (value === undefined || value === null || value === '') { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "This field is required"); } } if (no_error && (elem.id == 'field[]' || elem.id == 'ca[11][v]')) { if (elem.className.includes('phone-input-error')) { elem.className = elem.className + ' _has_error'; no_error = false; } } if (no_error && elem.name == 'email') { if (!value.match(/^[\+_a-z0-9-'&=]+(\.[\+_a-z0-9-']+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,})$/i)) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, 'Please enter a valid email address'); } } if (no_error && /date_field/.test(elem.className)) { if (!value.match(/^\d\d\d\d-\d\d-\d\d$/)) { elem.className = elem.className + ' _has_error'; no_error = false; tooltip = create_tooltip(elem, "Enter a valid date."); } } tooltip ? resize_tooltip(tooltip) : false; return no_error; }; var needs_validate = function(el) { if(el.getAttribute('required') !== null){ return true } if(el.name === 'email' && el.value !== ""){ return true } if((el.id == 'field[]' || el.id == 'ca[11][v]') && el.className.includes('phone-input-error')){ return true } return false }; var validate_form = function(e) { var err = form_to_submit.querySelector('._form_error'), no_error = true; if (!submitted) { submitted = true; for (var i = 0, len = allInputs.length; i < len; i++) { var input = allInputs[i]; if (needs_validate(input)) { if (input.type == 'tel') { addEvent(input, 'blur', function() { this.value = this.value.trim(); validate_field(this, true); }); } if (input.type == 'text' || input.type == 'number' || input.type == 'time') { addEvent(input, 'blur', function() { this.value = this.value.trim(); validate_field(this, true); }); addEvent(input, 'input', function() { validate_field(this, true); }); } else if (input.type == 'radio' || input.type == 'checkbox') { (function(el) { var radios = form_to_submit.elements[el.name]; for (var i = 0; i < radios.length; i++) { addEvent(radios[i], 'click', function() { validate_field(el, true); }); } })(input); } else if (input.tagName == 'SELECT') { addEvent(input, 'change', function() { validate_field(this, true); }); } else if (input.type == 'textarea'){ addEvent(input, 'input', function() { validate_field(this, true); }); } } } } remove_tooltips(); for (var i = 0, len = allInputs.length; i < len; i++) { var elem = allInputs[i]; if (needs_validate(elem)) { if (elem.tagName.toLowerCase() !== "select") { elem.value = elem.value.trim(); } validate_field(elem) ? true : no_error = false; } } if (!no_error && e) { e.preventDefault(); } resize_tooltips(); return no_error; }; addEvent(window, 'resize', resize_tooltips); addEvent(window, 'scroll', resize_tooltips); var hidePhoneInputError = function(inputId) { var errorMessage = document.getElementById("error-msg-" + inputId); var input = document.getElementById(inputId); errorMessage.classList.remove("phone-error"); errorMessage.classList.add("phone-error-hidden"); input.classList.remove("phone-input-error"); }; var initializePhoneInput = function(input, defaultCountry) { return window.intlTelInput(input, { utilsScript: "https://unpkg.com/intl-tel-input@17.0.18/build/js/utils.js", autoHideDialCode: false, separateDialCode: true, initialCountry: defaultCountry, preferredCountries: [] }); } var setPhoneInputEventListeners = function(inputId, input, iti) { input.addEventListener('blur', function() { var errorMessage = document.getElementById("error-msg-" + inputId); if (input.value.trim()) { if (iti.isValidNumber()) { iti.setNumber(iti.getNumber()); if (errorMessage.classList.contains("phone-error")){ hidePhoneInputError(inputId); } } else { showPhoneInputError(inputId) } } else { if (errorMessage.classList.contains("phone-error")){ hidePhoneInputError(inputId); } } }); input.addEventListener("countrychange", function() { iti.setNumber(''); }); input.addEventListener("keydown", function(e) { var charCode = (e.which) ? e.which : e.keyCode; if (charCode > 31 && (charCode < 48 || charCode > 57) && charCode !== 8) { e.preventDefault(); } }); }; var showPhoneInputError = function(inputId) { var errorMessage = document.getElementById("error-msg-" + inputId); var input = document.getElementById(inputId); errorMessage.classList.add("phone-error"); errorMessage.classList.remove("phone-error-hidden"); input.classList.add("phone-input-error"); }; var form_submit = function(e) { e.preventDefault(); if (validate_form()) { // use this trick to get the submit button & disable it using plain javascript document.querySelector('#_form_23_submit').disabled = true; var _form_serialize_23 = function(form){if(!form||form.nodeName!=="FORM"){return }var i,j,q=[];for(i=0;i<form.elements.length;i++){if(form.elements[i].name===""){continue}switch(form.elements[i].nodeName){case"INPUT":switch(form.elements[i].type){case"tel":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].previousSibling.querySelector('div.iti__selected-dial-code').innerText)+encodeURIComponent(" ")+encodeURIComponent(form.elements[i].value));break;case"text":case"number":case"date":case"time":case"hidden":case"password":case"button":case"reset":case"submit":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"checkbox":case"radio":if(form.elements[i].checked){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value))}break;case"file":break}break;case"TEXTAREA":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"SELECT":switch(form.elements[i].type){case"select-one":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break;case"select-multiple":for(j=0;j<form.elements[i].options.length;j++){if(form.elements[i].options[j].selected){q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].options[j].value))}}break}break;case"BUTTON":switch(form.elements[i].type){case"reset":case"submit":case"button":q.push(form.elements[i].name+"="+encodeURIComponent(form.elements[i].value));break}break}}return q.join("&")}; let serialized_23 = _form_serialize_23(document.getElementById('_form_23_')).replace(/%0A/g, '\\n'); var err = form_to_submit.querySelector('._form_error'); err ? err.parentNode.removeChild(err) : false; // We don't check the Google reCaptcha if projectId is null // Site properties: ProjectId is defined => we check the captcha before sending the form _check_reCaptcha_23(); } return false; }; addEvent(form_to_submit, 'submit', form_submit); })(); </script> <details class="text-xs"><summary style="color:inherit">How your data will be used</summary> <p class="pt-2">Please see <a href="/privacy.html" title="privacy-and-copyright">ISO privacy notice</a>. This site is protected by reCAPTCHA and the Google <a href="https://policies.google.com/privacy">Privacy Policy</a> and <a href="https://policies.google.com/terms">Terms of Service</a> apply.</p> </details></div></div></div> <div class="footer-social clearfix"> <ul itemscope itemtype="https://schema.org/Organization"> <link itemprop="url" href="https://www.iso.org/"> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://www.linkedin.com/company/isostandards" title="Linkedin"><i class="bi-linkedin"></i></a></li> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://twitter.com/isostandards" title="Twitter"><i class="bi-twitter"></i></a></li> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://www.facebook.com/isostandards" title="Facebook"><i class="bi-facebook"></i></a></li> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://www.instagram.com/isostandards" title="Instagram"><i class="bi-instagram"></i></a></li> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://www.youtube.com/ISO" title="YouTube"><i class="bi-youtube"></i></a></li> <li><a itemprop="sameAs" target="_blank" rel="noopener" href="https://www.flickr.com/photos/isostandards" title="Flickr"><i class="bi-flickr"></i></a></li> </ul> </div> <p class="display-5 opacity-100">Making lives <strong><em>easier</em></strong>, <strong><em>safer</em></strong> and <strong><em>better</em></strong>.</p> <div class="row"> <div class="col-md-8 col-md-offset-2 pull-left"> <p class="text-xs">We are committed to ensuring that our website is accessible to everyone. If you have any questions or suggestions regarding the accessibility of this site, please <a href="mailto:webmaster@iso.org?subject=Accessibility" style="white-space: nowrap">contact us</a>.</p> <p class="text-sm"><a href="#copyright" target="_self" data-bs-toggle="collapse" aria-expanded="false" aria-controls="copyright">© All Rights Reserved</a> <span id="copyright" class="collapse">All ISO publications and materials are protected by copyright and are subject to the user’s acceptance of ISO’s conditions of copyright. Any use, including reproduction requires our written permission. All copyright requests should be addressed to <a href="mailto:copyright@iso.org">copyright@iso.org</a>.</span></p> </div> </div> </div> <div class="topbar"> <div class="topbar-content"> <a class="logo isologo logo-xs theme-red poweredby page-scroll logo-scrollTop" href="#page-top" title="Scroll to top"></a> <div class="poweredby-txt">Powered by</div> </div> </div> </footer>  <div class="modal fade" tabindex="-1" role="dialog" id="iso-optout" aria-hidden="true" aria-labelledby="modalLabel"> <div class="modal-dialog modal-dialog-centered"> <div class="modal-content"> <div class="modal-header"> <h4 class="modal-title" id="modalLabel"> Add to cart</h4> <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button> </div> <div class="modal-body"> <div class="modal-body clearfix"> <div id="modalOptOut"></div> <div id="modalNoOptOut"></div> <span id="proceedToCheckout" class="visually-hidden" data-label="Checkout"></span> <span id="continueShopping" class="visually-hidden" data-label="Continue shopping"></span> </div> </div> </div> </div> </div>  </body> </html>

CINXE.COM

ISO - Healthcare cybersecurity: Diagnosing risks, prescribing solutions