1. Cybersecurity and Healthcare
A Survey of Healthcare IT Professionals at HIMSS 2018
S U R V E Y
Survey of 102 IT professionals taken at HIMSS 2018
2. Healthcare data is extremely
valuable on the dark web. As a
result, attacks against healthcare
organizations are on the rise.
3. Do you worry about a cybersecurity event striking your organization?
Not worried
/not very
concerned
7%
Concerned
16%
Very concerned
77%
4. What type of cyberattack are you most concerned about?
Ransomware
32%
DDoS
13%
Compromised applications
19%
Insider threats
25%
Other
11%
5. How confident are you in your organization’s
ability to handle a cyberattack?
Needs
work
9%
Adequate
32%
Above
average
33%
Very
confident
19%
Needs an
overhaul
6%
6. Does your organization have a senior
information security leader such as a CISO?
No
14%
No, but looking to hire
within next 12 months
14%
Yes
73%
7. Does your organization have a
cybersecurity incident response plan?
No
14%
No, but on roadmap in
next 12 months
12%
Yes
75%
8. Has your institution suffered from a cyberattack?
No
44%
Yes, more than
a year ago
4%
Yes, in the past year
38%
I’m not sure
13%
?
9. Has your institution ever paid a ransom or extortion fee?
No
43%
I’m not sure
48%
Yes
9%
?
10. Regarding internal threats from employee or contractor,
what are you most worried about?
Malicious users
24%
Careless users
51%
Compromised users
25%
11. What makes detecting insider threats difficult?
Lack of tools to monitor employee
and other insiders’ activities
27%
More employees, contractors,
business partners have access
to our network
24%
More company assets on the
network / cloud
24%
Lack of staff to analyze permissions
data on employee access
25%
12. What is the most time-consuming task when it comes to
investigating or responding to insider threats?
24%
32%
26% Tuning security
tools
Collecting information from
diverse security tools
Forensics or
incident analysis
17% Managing too many
security alerts
13. Increasingly cyber incidents are rendering
healthcare organizations unable to access
patient data which has impacted overall
patient care. For this reason, it is more
crucial than ever that healthcare
organizations take steps to protect their
data and applications now.
— Terry Ray, Imperva CTO
”
“
14. L E A R N M O R E
To learn more about protecting data and preventing
security breaches in healthcare, click the button below.
15. Imperva is a leading cybersecurity company that delivers best-in-class
solutions to protect data and applications – wherever they reside –
on-premises, in the cloud, and across hybrid environments.