CISO Brief: 7 Healthcare Cybersecurity Predictions for 2026
In 2026, healthcare cybersecurity is shifting from reacting to crises toward building resilience that endures. Innovation, regulation, and collaboration are accelerating, and healthcare leaders across the sector are meeting this moment with renewed clarity and purpose. These seven healthcare cybersecurity predictions reflect how our industry is defending smarter, working together more intentionally, and rethinking what […]
CISO Brief: A Look Back at Healthcare Cybersecurity in 2025, A Year Defined by Disruption
As 2025 comes to a close, it’s impossible not to view the year through a wide-angle lens. Healthcare cybersecurity in 2025 did not follow a clean, predictable arc. Instead, it delivered a series of sharp turns, unexpected pivots, and both hard-earned wins and hard-learned lessons. If 2024 felt volatile, 2025 reaffirmed that volatility is now the default operating […]
Strategies for Strengthening Cybersecurity Programs
Maturing cybersecurity programs leverage a range of best practices. We take a closer look at these in the new Fortified webinar and panel discussion “Cyber Risk, Budgets, and Patient Safety” hosted by Senior vCISO Tamra Durfee. Joining Tamra on the panel discussion are Ann Wright, director of IT and informatics at Ortho Nebraska, and Erin […]
Lessons From the Front Lines: How One Hospital Survived 30 Days Offline
For healthcare leaders, there’s no good time for a cyberattack, but they’re especially aggravating when they hit while you’re on vacation. That’s what happened to Katrina Brown, chief nursing officer of Providence Hospital in Mobile, Alabama, when the EMR system and other software went down while she was in Hawaii. The Response Strategy: Taking Quick […]
Why a Risk Assessment is the First Step Toward Cyber Resilience in Healthcare
Knowing where to begin. That’s the biggest challenge most healthcare leaders face when it comes to maturing their cybersecurity programs. From HIPAA requirements to NIST frameworks, the regulations and risks can feel overwhelming. That’s why a risk assessment is often the smartest first step. The Problem to Solve Healthcare organizations are required to conduct periodic […]
The 2025 Horizon Report: Your Roadmap to Cybersecurity Resilience
The healthcare industry is under siege. As we move into 2025, the cybersecurity challenges facing hospitals, health systems, and vendors are growing more complex, more sophisticated, and more frequent. The stakes have never been higher; patient safety, operational continuity, and trust hang in the balance. Cybercriminals are evolving their strategies, leveraging advanced technologies like artificial […]
Supporting HHS’s Renewed Focus on Cybersecurity in Healthcare
At Fortified Health Security, we are encouraged by the Department of Health and Human Services’ (HHS) continued commitment to advancing cybersecurity across the healthcare sector. The proposed updates to the HIPAA Security Rule represent a significant step forward, ensuring providers adopt best-practice measures proven to protect healthcare networks against evolving cyber threats. As demonstrated by […]
Cybersecurity Awareness Month: Keeping Healthcare Healthy
As October ends, Cybersecurity Awareness Month reminds us of the crucial opportunity for individuals and organizations to deepen their understanding of cybersecurity and proactively secure their digital environments. In healthcare, where sensitive patient data and critical systems are persistently at risk, this focus is essential. The Importance of Cybersecurity in Healthcare Healthcare organizations are particularly […]
Third-Party Risk Management in Healthcare: The “Must-Haves”
The rising costs associated with cybersecurity breaches, like the Change Healthcare incident and CrowdStrike breach, underscore the severe consequences and need for third-party risk management in healthcare. These incidents serve as urgent reminders of how much damage can result from unmitigated vulnerabilities. Healthcare organizations, which rely heavily on third-party vendors and external partners, must actively […]
How to Get C-Suite Buy-In for Healthcare Cybersecurity
Giving a cybersecurity presentation to the C-suite can be a challenge for even the most experienced Chief Information Security Officer (CISO). You’re often not talking to technical people, for one thing. You might look up from your carefully crafted slides about Zero Trust or third-party risk management and see glazed eyes. Every executive at the […]