A KPMG poll of 233 chief information, security, technology and compliance officers at large provider and payer organizations finds 80 percent of their organizations have been compromised by a cyber attack during the past two years.

“As this is the largest part of the U.S. economy and a safeguard of peoples’ well-being, healthcare is a matter of national security,” the research and consulting firm contends.

Thirteen percent of c-level executives polled say their organization is targeted about once daily and 12 percent see two or more attacks a week. But 25 percent either cannot detect in real-time if their information systems are being compromised, or don’t know if they have the capabilities to detect.

The fear, according to Greg Bell, leader of the cyber practice at KPMG, is that organizations not seeing frequent attacks may be underestimating the threat.

Also See: Cybersecurity Hiring Booms, but Candidate Field is Limited

Two thirds of payer survey respondents believe their organizations are prepared for a cyber attack, while only 53 percent of provider respondents feel the same way. Respondents, in order, selected the biggest health data security vulnerabilities as being external attacks, sharing data with third parties, employee breaches or thefts, wireless computing and inadequate firewalls.

Eighty-five percent of provider respondents and 89 percent of payers say cybersecurity has been discussed at the board level in the past year. However, nearly a fifth of surveyed providers do not have a person solely responsible for information security; only 8 percent of payers said the same.

The KPMG survey results are available here.

Register or login for access to this item and much more

All Health Data Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access