Insights from CISA HPH Sector Risk and Vulnerability Assessment

The US Cybersecurity and Infrastructure Security Agency (CISA) has carried out an assessment of an unspecified healthcare and public health (HPH) organization’s cybersecurity. Despite some areas of resilience, there were several high-severity issues. Recommendations for HPH sector organizations included asset management, identity management and device security, and managing vulnerability, patches, and configurations. Addressing these vulnerabilities and implementing the suggested strategies could strengthen cybersecurity defenses among healthcare businesses.