Australia’s private hospital operators warn costs of proposed cybersecurity law could cause ICU closures

Private hospital operators in Australia claim that the proposed new cybersecurity obligations introduced by the government could result in the closure of intensive care units (ICUs) due to the associated costs. The Security Legislation Amendment (Critical Infrastructure Protection) Bill 2022 requires hospitals, including those with ICUs, to develop a risk management program to defend against attacks and identify high-risk employees. Private hospitals argue that they cannot afford the financial burden imposed by the legislation, while public hospitals will receive government support. The closure of ICUs in smaller and independent hospitals may be inevitable as a result.