Unsecured medical devices
Citing patient safety as a top concern, most respondents are neutral about or not confident in their existing medical device strategy, with chief information officers (CIOs) and chief information security officers (CISOs) the most apprehensive. Common frustrations include limitations placed on providers by a lack of support from device manufacturers, such as recommendations that may conflict with delivering patient care. Providers also struggle to understand what assets exist, which assets have been patched, which are connected to the network and what systems the devices are talking to. The 39% of respondents who express confidence in their device security strategy point to their policies and procedures.