Leading cybersecurity adopters and providers in healthcare

Cybersecurity should be a key concern for all companies in the healthcare sector, but who are the companies making their mark within the cybersecurity theme? Here we look at some of the healthcare companies currently leading the way in deploying cybersecurity solutions and the specialist vendors of such solutions to the healthcare industry.

Abbott, US 

To ensure cybersecurity, Abbott has established a product cybersecurity multifunctional group, a cybersecurity medical advisory board, and several relationships with third-party cybersecurity specialists like California Cybersecurity Institute that test and challenge incumbent systems. 

Amgen, France 

Amgen has a Cybersecurity & Digital Trust Governance Council, which includes leaders from various functions such as information security, compliance, regulatory affairs, manufacturing, audit, law, and business development. It conducts reviews and evaluations of Amgen's cybersecurity resilience program. 

Battelle, US 

Battelle specializes in helping companies take medical devices from development to the commercial market. It maintains a zero-trust environment throughout the process to minimize cyber risk. It uses AI to predict and mitigate cyber threats.   

Johnson & Johnson, US 

Johnson & Johnson’s two-pronged cybersecurity approach involves protecting products before commercial release and supporting further protection once they are in use. It has an information security and risk management (ISRM) organization focusing on cybersecurity. 

Medtronic, Ireland 

Medtronic has a product vulnerability intelligence program to comprehend and react quickly to cybersecurity threats. In the event of a detected cybersecurity vulnerability, it has a coordinated vulnerability disclosure (CVD) process to notify patients, clinicians, caregivers, regulators, and other stakeholders.   

Parexel, US 

Parexel's cybersecurity strategy includes procedures for identifying material cybersecurity risks, prioritizing risks, and analyzing risk mitigation. It also develops and implements policies and procedures, conducts regular testing to identify vulnerabilities, and engages consultants and third parties for cybersecurity assessments. Parexel sustains a formal information security and risk program organized around NIST and ISO 27001 Frameworks.   

Sanofi, Germany 

Sanofi is investing in comprehensive cybersecurity measures. Sanofi decided to rebuild its systems application and products (SAP) cybersecurity infrastructure in 2020. It has partnered with cybersecurity vendors like CybelAngel and Security Bridge.

Atos, US 

Atos’s healthcare solutions focus on staff identity and access management by assigning all individuals a personal identity, controlling their access rights, and improving verification for their signatures. It also automates threat discovery, improves cross-environment visibility, and monitors the security of the medical devices on a network. 

BridgeHead Solutions, US 

BridgeHead Solutions is a data management company that offers management consulting to foreign medical device firms. It recently launched an independent clinical archive, HealthStore, which collects and removes all data from every network-connected medical device in a hospital. This should help in the bid to assist in decommissioning legacy systems in hospitals. Data from each application is stored separately, thereby isolating and protecting the data from cyberattacks. 

CyberMaxx, US 

CyberMaxx offers managed security services designed to help increase compliance, eliminate talent shortages, and help prevent, detect, and respond to cyberattacks on healthcare organizations. To do this, it focuses on three distinct pillars of cybersecurity: people, process, and technology. It works with several healthcare companies like Amsurg, AccentCare, and Acadia Healthcare.   

CynergisTek, US 

CynergisTek is a cybersecurity and information management consulting firm serving the healthcare industry. Since 2004, CynergisTek has offered specialized services and solutions to help organizations achieve privacy, security, compliance, and document output goals. The company has partnered with hundreds of healthcare organizations and has been named in numerous reports as one of the top firms that provider organizations turn to for privacy and security. 

DataMotion Health, France 

DataMotion Health enables providers to communicate more efficiently across the care continuum and with their patients. It provides secure messaging and connectivity solutions for the secure exchange of protected health information (PHI) for clinical use and as part of delivering improved care at reduced costs. The company has 16 years of secure messaging and data delivery experience, and offers support for all regulatory compliance needs for personally identifiable information in motion, industry accreditations, and memberships, in addition to the company’s extensive healthcare provider user base. 

Medigate, US 

Medigate was founded in 2017 and specializes in protecting medical devices and networks from cyberattacks. Medicate’s 2021 acquisition by Claroty, a cybersecurity company that covers multiple industries, will increase Medigate’s capabilities. Medigate offers a broad protection across a healthcare companies’ cyber-physical systems (CPS), from intravenous (IV) pumps to lighting systems.  

Medigate aims to offer full visibility over all connected devices within a healthcare company. Medigate’s network focuses on detecting and preventing potential threats. Medigate stay up to date with the cybersecurity needs of healthcare companies as they collaborate with leading medical device companies and healthcare companies like Siemens Healthineers.