A plan for the cybersecurity of healthcare establishments

2024-01-05 08:47:09

With more than €250 million until 2025, the Care program aims to improve the digital security of healthcare establishments, in an increasingly threatened environment. Presented in mid-December by Aurélien Rousseau, then Minister of Health, it sets out around twenty objectives. From the first half of 2024, health and medico-social establishments will have to justify the measures taken and an instruction summarizing all of their obligations is expected.

Health is experiencing a real boom in digital uses, from private practices to hospitals, indicates the ministry press release. In fact, the risks of cybercrime are also increasing. According to the National Information Systems Security Agency (Anssi), the health sector is the third sector most affected by cyberattacks, following local authorities and VSE/SMEs. In recent months, massive attacks have targeted certain health establishments and have had direct consequences on the organization of services and patient care. Returning to normal can take several months and often requires significant human and financial investments for the victim establishments.

Aurélien Rousseau, Minister of Health and Prevention, and Jean-Noël Barrot, Minister Delegate in charge of Digital, went on Monday December 18, 2023 to the Hospital Center (CH) of Versailles, victim of such an attack on December 3, 2022 , to present the “Cybersecurity Acceleration and Resilience of Establishments” (Care) program. It is the result of a working group bringing together experts in the field and aims to accelerate the upgrade of hospital information systems in the face of the state of the threat and to sustainably strengthen the resilience of healthcare structures.
The program, allocated €250 million until 2025, out of a total investment objective of €750 million by 2027, thus pursues the dual objective of preventing attacks from succeeding and allowing establishments to escape from them. recover as quickly as possible. It sets out 20 objectives along 4 axes:

– Governance and resilience;
– Resources and pooling;
– Sensitization ;
– Operational security.

Cybersecurity acceleration and resilience of establishments (Care), an action plan to protect our establishments once morest the cyber threat, December 2023, summary on the Ministry of Health website.

1704521374
#plan #cybersecurity #healthcare #establishments

Leave a Replay