Experts emphasized that the main element of protection is the correct configuration of local networks of medical institutions. They recommend ensuring network segmentation and access control to different types of data. For example, information from diagnostic equipment should be stored separately from administrative data to reduce the risk of unauthorized access.
Another important step is the implementation of certified information security tools. Experts recommend using solutions to monitor and analyze the security of medical information systems that comply with Russian FSTEC standards. Particular attention should be paid to the protection of data related to diagnosis and treatment.
Regular security audits have also become an important point among the recommendations. Experts believe medical organizations should conduct safety assessments at least every three months. This will help detect vulnerabilities in a timely manner and minimize risks.
Protection of specialized medical equipment, including radiation diagnostic systems, is equally important. To achieve this, experts recommend implementing multi-factor authentication and encrypting transmitted data.
Experts also focused on the need to protect federal health information systems and laboratory information systems, such as the Uniform State Health Information System, where both confidentiality and data integrity are critical.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
