Data Resilience Framework Archives - gettectonic.com
Healthcare Cybersecurity Challenges Persist
28Apr

Healthcare Cybersecurity Challenges Persist

Healthcare Cybersecurity Challenges Persist as Sector Struggles to Shift from Reactive to Proactive Strategies Healthcare organizations of all sizes continue to face significant challenges in addressing systemic cybersecurity risks, with new benchmarking data revealing that the industry remains largely reactive rather than proactive in its approach. The findings come from the 2025 Healthcare Cybersecurity Benchmarking Study, a collaborative effort by KLAS Research, Censinet, the American Hospital Association (AHA), the Health Information Sharing and Analysis Center (H-ISAC), the Healthcare and Public Health Sector Coordinating Council (HSCC), and the Scottsdale Institute. The study gathered responses from 69 healthcare and payer organizations between September and December 2024, assessing their alignment with key cybersecurity frameworks, including: Key Findings: Strong Response & Recovery, but Gaps in Prevention & Risk Management 1. Persistent Focus on Reactive Measures Consistent with past years, healthcare organizations reported high coverage in the “Respond” and “Recover” functions of the NIST CSF 2.0, indicating strong incident response and disaster recovery capabilities. However, long-term recovery planning lags behind immediate response efforts, suggesting room for improvement. “As cyber threats grow, healthcare organizations are preparing for when—not if—they will face a breach, emphasizing incident response and business continuity strategies,” the study noted. 2. Critical Gaps in Supply Chain & Asset Management Under the NIST CSF, the lowest coverage areas were: This is particularly concerning given the rising number of third-party breaches impacting healthcare. 3. Cybersecurity Insurance Benefits from Framework Adoption Organizations implementing the NIST CSF saw slower growth in cybersecurity insurance premiums, reinforcing the financial benefits of proactive risk management. 4. Emerging AI Risk Management Efforts Adoption of the NIST AI RMF remains in early stages, with many organizations still establishing governance structures for AI-related risks. 5. HICP & HPH CPG Findings Align with Past Trends Moving from Reactive to Proactive Security While progress has been made, the study highlights that greater adherence to leading cybersecurity frameworks can help healthcare organizations transition to a more proactive security posture, reducing risk and improving resilience. “The healthcare sector must prioritize foundational cybersecurity practices—particularly in supply chain and asset management—to mitigate escalating threats,” the report concluded. Final Takeaway:Healthcare cybersecurity remains heavily reactive, but organizations that invest in comprehensive risk management, third-party oversight, and AI governance can better protect patient data and reduce long-term vulnerabilities. Like Related Posts AI Automated Offers with Marketing Cloud Personalization AI-Powered Offers Elevate the relevance of each customer interaction on your website and app through Einstein Decisions. Driven by a Read more Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more

Read More
April 28, 2025in Data, Life Sciences Cloud, Salesforce Health and Life Sciences Solutions
DHS Introduces AI Framework to Protect Critical Infrastructure
19Nov

DHS Introduces AI Framework to Protect Critical Infrastructure

The Department of Homeland Security (DHS) has unveiled the Roles and Responsibilities Framework for Artificial Intelligence in Critical Infrastructure, a voluntary set of guidelines designed to ensure the safe and secure deployment of AI across the systems that power daily life. From energy grids to water systems, transportation, and communications, critical infrastructure increasingly relies on AI for enhanced efficiency and resilience. While AI offers transformative potential—such as detecting earthquakes, optimizing energy usage, and streamlining logistics—it also introduces new vulnerabilities. Framework Overview The framework, developed with input from cloud providers, AI developers, critical infrastructure operators, civil society, and public sector organizations, builds on DHS’s broader policies from 2023, which align with White House directives. It aims to provide a shared roadmap for balancing AI’s benefits with its risks. AI Vulnerabilities in Critical Infrastructure The DHS framework categorizes vulnerabilities into three key areas: The guidelines also address sector-specific vulnerabilities and offer strategies to ensure AI strengthens resilience while minimizing misuse risks. Industry and Government Support Arvind Krishna, Chairman and CEO of IBM, lauded the framework as a “powerful tool” for fostering responsible AI development. “We look forward to working with DHS to promote shared and individual responsibilities in advancing trusted AI systems.” Marc Benioff, CEO of Salesforce, emphasized the framework’s role in fostering collaboration among stakeholders while prioritizing trust and accountability. “Salesforce is committed to humans and AI working together to advance critical infrastructure industries in the U.S. We support this framework as a vital step toward shaping the future of AI in a safe and sustainable manner.” DHS Secretary Alejandro N. Mayorkas highlighted the urgency of proactive action. “AI offers a once-in-a-generation opportunity to improve the strength and resilience of U.S. critical infrastructure, and we must seize it while minimizing its potential harms. The framework, if widely adopted, will help ensure the safety and security of critical services.” DHS Recommendations for Stakeholders A Call to Action DHS encourages widespread adoption of the framework to build safer, more resilient critical infrastructure. By prioritizing trust, transparency, and collaboration, this initiative aims to guide the responsible integration of AI into essential systems, ensuring they remain secure and effective as technology continues to evolve. Like Related Posts AI Automated Offers with Marketing Cloud Personalization AI-Powered Offers Elevate the relevance of each customer interaction on your website and app through Einstein Decisions. Driven by a Read more Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more

Read More
November 19, 2024in Artificial Intelligence, Data, Laws, Salesforce, Technology

Subscribe to our mailing list. Join our mail list to receive our newsletter

We'll keep you up to date with our latest news, insights, free resources, and much more.
Don't worry, we won't spam you.
gettectonic.com