Healthcare and Public Health Sector: Strengthen your Defenses and Mature your Cybersecurity Efforts

Learn from what has worked well for others in the HPH sector. This site offers resources developed specifically for organizations across healthcare subsectors as best practices prepared by the most sophisticated health industry cyber practitioners.

CISA hosts the federal government’s official one-stop location for resources to tackle ransomware more effectively. This website includes information, guidance, and other tools to help organizations protect, prepare for and respond to ransomware.

The Cyber Resource Hub includes information on how to “Get your stuff off search” as well as more complex, non-scalable services such as Cyber Hygiene Vulnerability Scanning, Web Application Scanning (WAS), Phishing Campaign Assessments (PCAs), etc.

Healthcare and public health staff need to know what to do in a cyber incident. CISA helps build a cyber-ready workforce by offering training and education for different groups, including healthcare and public health.

Every healthcare organization should have an Incident Response Plan that spells out what the organization needs to do before, during, and after an actual or potential security incident.

This web page offers free services from CISA and our industry partners, starting with basic steps to take immediately and building up to more complex actions and resources.

To ensure reliable communications when circuits are congested, CISA offers GETS for priority access to local and long distance calls on landline networks and WPS for prioritized wireless calling on nationwide and several regional cellular networks.

CISA developed an interactive graphic for those who are responsible for communications networks to help evaluate current resiliency capabilities, identify ways to improve resiliency, and develop plans for mitigating the effects of potential threats.