Procurement Guidelines for Cybersecurity in Hospitals

Back to all publications

Download

Publication date:February 24, 2020

As cybersecurity becomes more of a priority for hospitals, it is essential that it is integrated holistically in the different processes, components and stages influencing the healthcare ICT ecosystem. Procurement is a key process shaping the ICT environment of modern hospitals and, as such, should be at the forefront when it comes to meeting cybersecurity objectives. This report offers cybersecurity guidelines for Hospitals when procuring services, products and infrastructure. All good practices are linked to types of procurement for which they are relevant and to threats which they can mitigate, providing an easy to filter set of practices for hospitals who want to focus on particular aspects.

An online tool to identify good practicies for security in hospitals is also available:

Access the Online Tool

Search related content with: Cybersecurity eHealth Security

Publication details

Related content

Low Earth Orbit (LEO) SATCOM Cybersecurity Assessment

This report explores the cybersecurity of Low Earth Orbit (LEO) constellations providing telecommunications services (LEO satcom). Examining various threats and risks-technical, financial, or commercial the landscape of potential attacks is vast.

Undersea cables

This report aims to follow up with detailed technical guidelines for national authorities and to support them with the technical aspects of the supervision of undersea cables and their associated infrastructure, including landing stations and cable net

Health Threat Landscape

This is the first analysis conducted by the European Union Agency for Cybersecurity (ENISA) of the cyber threat landscape of the health sector in the EU.

Good Practices for Supply Chain Cybersecurity

The report provides an overview of the current supply chain cybersecurity practices followed by essential and important entities in the EU, based on the results of a 2022 ENISA study which focused on investments of cybersecurity budgets among organisat

BROWSE ALL PUBLICATIONS

9th ENISA eHealth Security Conference

2024 Nov 6

4th ERA-ENISA Conference on Cybersecurity in Railways

2024 Oct 2

7th E.DSO/EE-ISAC/ENCS/ENISA Cybersecurity Forum

2024 Oct 1

ENISA Telecom & Digital Infrastructure Security Forum 2024

2024 May 15

BROWSE ALL EVENTS

Asking for your feedback: ENISA technical guidance for the cybersecurity measures of the NIS2 Implementing Act

News Item

We are inviting industry stakeholders to provide comments on the technical guidance for the NIS2 implementing act on cybersecurity measures for critical entities in the digital infrastructure sector.

Prioritising eHealth cybersecurity against emerging challenges

News Item

This year, the European Union Agency for Cybersecurity (ENISA) organises the 9th edition of the eHealth Security conference, in collaboration with the National Cybersecurity Centre of Hungary and Semmelweis University.

The 2024 ERA-ENISA Conference on Railway Cybersecurity seeks to strengthen sector preparedness and resilience against current threats

Press Release

Amidst emerging technology advancements and evolving security challenges in the sector, the fourth edition of the conference aims to explore the railway cybersecurity threats landscape.

7th Cybersecurity Forum: Power grids cybersecurity ascending to prominence

News Item

The Association of European Distribution System Operators (E.DSO), the European Energy Information Sharing and Analysis Centre (EE-ISAC), the European Network for Cyber Security (ENCS) and the European Union Agency for Cybersecurity (ENISA) joined forc

BROWSE ALL NEWS