A Review of the State of Cybersecurity in the Healthcare Industry and Propose Security Controls

Authors

• Aishwarya Desai, Department of Epidemiology, Human Genetics and Environmental Sciences, The University of Texas Health Science Center at Houston, USA
• Manali Desai, Department of Epidemiology, Human Genetics and Environmental Sciences, The University of Texas Health Science Center at Houston, USAFollow

Abstract

Our study aims to identify the state of cybersecurity in the healthcare domain. Cyber incidents, including ransomware and similar cyber-attacks, impact healthcare entities. The review highlights the government's efforts to protect citizens' health information by passing laws regulating the healthcare industry. The review targeted healthcare-related laws in the United States, the European Union, Singapore, and India. The study identified that while developed countries like the United States, the European Union, and Singapore have health data privacy laws, developing countries like India still need data privacy laws. The nature, value, and sensitivity of data retained by healthcare entities make the healthcare domain a rich target for cyber threat actors. Based on the study, the paper proposes security practices, including security monitoring, secure network architecture, information technology vulnerability management, cyber policies, and user training, that can help prevent cyber-attacks on healthcare entities.

Recommended Citation

Desai, Aishwarya and Desai, Manali (2023) "A Review of the State of Cybersecurity in the Healthcare Industry and Propose Security Controls," Mesopotamian Journal of Artificial Intelligence in Healthcare: Vol. 1: Iss. 1, Article 16.
DOI: https://doi.org/10.58496/MJAIH/2023/016

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.