Cyberthreats within rural hospitals: A survey
Abstract
Background
Cyberattacks and cybercrime are growing threats to all health care facilities, regardless of organization size or location. Hospitals within metro areas have an Information Technology Department either onsite or off that manages cyber risk. However, for hospitals within rural areas, managing cyber risk can be challenging as investing in the latest and greatest security solutions is often beyond their means compared to metro area hospitals. Nonetheless, failure to protect the facility from a cyberattack can result in fees, fines, mistrust, decreased market capture, amongst other negative consequences. One common approach that rural hospitals use to protect them from cyberattacks is to pay for a high-cost cyber-insurance. While this may cover any financial burden of a cyberattack, it does not stop cybercriminals to continue breaching their data system containing HIPAA protected information.
Methods
The project focuses on bringing awareness to the growing concern of cyberthreats within rural hospitals. This project aims to implement future suggestions on improving strategies that rural hospitals can utilize within their cybersecurity departments. In order to aid implementation, healthcare information technology personnel from rural communities will be surveyed to address the top concerns of cyberthreats within rural hospitals and their reaction protocols to a cyberattack. A framework for managing risk, providing a security guidance, and assessing the results will be developed.
Results
Preliminary results will be available at the time of presentation.
Conclusion
The development of promoting awareness of cyber risk within rural hospitals will boost further research on creating success in a risk-based security approach. Initial work on this project offers key lessons for refinement and may confirm the protective potential of the project.
Keywords
Rural Health, Health Information Technology (HIT), Cyberattacks, Rural Hospitals
Cyberthreats within rural hospitals: A survey
Background
Cyberattacks and cybercrime are growing threats to all health care facilities, regardless of organization size or location. Hospitals within metro areas have an Information Technology Department either onsite or off that manages cyber risk. However, for hospitals within rural areas, managing cyber risk can be challenging as investing in the latest and greatest security solutions is often beyond their means compared to metro area hospitals. Nonetheless, failure to protect the facility from a cyberattack can result in fees, fines, mistrust, decreased market capture, amongst other negative consequences. One common approach that rural hospitals use to protect them from cyberattacks is to pay for a high-cost cyber-insurance. While this may cover any financial burden of a cyberattack, it does not stop cybercriminals to continue breaching their data system containing HIPAA protected information.
Methods
The project focuses on bringing awareness to the growing concern of cyberthreats within rural hospitals. This project aims to implement future suggestions on improving strategies that rural hospitals can utilize within their cybersecurity departments. In order to aid implementation, healthcare information technology personnel from rural communities will be surveyed to address the top concerns of cyberthreats within rural hospitals and their reaction protocols to a cyberattack. A framework for managing risk, providing a security guidance, and assessing the results will be developed.
Results
Preliminary results will be available at the time of presentation.
Conclusion
The development of promoting awareness of cyber risk within rural hospitals will boost further research on creating success in a risk-based security approach. Initial work on this project offers key lessons for refinement and may confirm the protective potential of the project.
