• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer

  • Opinion
  • Health IT
    • Behavioral Health
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Patient Engagement
    • Population Health Management
    • Revenue Cycle Management
    • Social Determinants of Health
  • Digital Health
    • AI
    • Blockchain
    • Precision Medicine
    • Telehealth
    • Wearables
  • Startups
  • M&A
  • Value-based Care
    • Accountable Care (ACOs)
    • Medicare Advantage
  • Life Sciences
  • Research

Why Data Resilience in Healthcare Needs a Routine Physical

by Stephen Manley, CTO, Druva 04/13/2023 Leave a Comment

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print
Stephen Manley, CTO, Druva

The greatest innovation in healthcare in the last twenty years is something that connects us all… data. At any given moment, healthcare facilities, hospitals and more rely on data to operate more efficiently, drive forward patient care and further develop medical research. Even in the last two years, data has been paramount to the development of mRNA technology that has helped us combat the COVID-19 crisis and even led to a new treatment for type-two diabetes. 

The recent medical breakthroughs speak to the power of data and the vast potential it has to help improve lives. Unfortunately, as data becomes more valuable, the threats become direr. As the attackers evolve, organizations need to take a holistic approach if they want to defeat the threats.

 Let’s explore what these threats are and what healthcare institutions can do to protect the essential data of their customers and patients.

The health risks of patient data in healthcare

Ransomware is among the leading risks in data exploitation — and sensitive patient data is a honey pot for cybercriminals looking to take advantage of glaring vulnerabilities. Because healthcare organizations keep up with such a high volume of data (i.e., medical records, patient forms, health insurance claims, provider and patient communication records, etc.), they can become prime targets for hackers. 

Cyber attacks on healthcare organizations happen so often that 45 million people were directly affected in 2021. In the summer of 2022, one of the largest healthcare cyber incidents to date struck more than 2 million patients across 50 facilities in an attack on Shields Health Care Group. 

The right systems must be put in place in order to protect hospitals and other key healthcare infrastructures from these types of attacks. Successful attacks can leave healthcare organizations reeling for weeks or even months, with many juggling the ransom demands from malware gangs with the bureaucracy and communications needed to reconcile fragile patient data. This can put enormous strain on existing systems and draw the issue to its breaking point.

Additionally, natural disasters are more frequent, destructive, and striking new locations. Large storms like Hurricane Sandy and Katrina caused hospitals to evacuate patients, taking them and their sensitive data to different facilities. Many data systems were down for weeks during these disasters, making patient identification, health logs and more incredibly difficult to track. Today, when healthcare is almost impossible without the patients’ data, one disaster has the potential to wipe out a hospital’s data center and its ability to provide care, especially when that hospital has nothing in place to effectively restore lost patient data once it happens.

Finally, one of the greatest threats to patient data comes from the inside. Patient data has been stolen or sold by those who had insider access, making the threat of these kinds of exploitations both an internal and external affair. In all cases, whether it’s from a ransomware attack, flood, or insider, losing data harms patients, slows research, and causes the public to lose faith.

Healthcare data deserves a routine check-up

It is paramount that your data be protected and available on demand, no matter the scenario. Adopting the mindset of anticipating the unexpected is key to a successful anti-ransomware strategy. When that time comes, you must recover data quickly to limit downtime and service disruption. Creating an integrated protection plan and staying vigilant is important — ransomware actors are constantly updating their methods of attack so when it comes to protecting your data, you cannot “set it and forget it.”

Begin updating your own plan by identifying the areas that your teams have access to and which areas are experiencing rapid data growth. Once you have done that, back up all your data to a secure, offsite location. This will ensure that in the event your primary environment becomes compromised by a disaster, like an unexpected flood to your data center, you’ll have duplicate information on standby. Finally, try to assess which types of data support your mission-critical applications, so you can set up additional high-availability infrastructure. 

What’s the purpose of protecting all data ahead of determining which parts are mission-critical? First, it must be understood that the relationship between data, infrastructure, and applications can be complex. Disaster can strike amidst your attempts to untangle the web of data in your infrastructure. Second, new data is constantly being processed and uploaded to new locations. By default, you should protect it because it is better to be safe than sorry. Third, data prioritization always changes, so you don’t want to sell yourself short leaving key data points unprotected.

Protecting your data can feel overwhelming, so your goal should be to deploy modern systems that ensure automated backups are constantly occurring. The cloud is a dependable platform that can help you meet global recovery needs in the event of a disaster — it doesn’t depend on any on-premises hardware or appliances to provide the support your organization may need in the time of an attack.


About Stephen Manley

Stephen Manley is the Chief Technology Officer at Druva, a SaaS platform for data resiliency, and the only vendor to ensure data protection across the most common data risks backed by a $10 million guarantee. Stephen delivers solutions to help customers extract the full potential of their data. In leading development of data management capabilities for startups and serving as CTO of the Data Protection Group at Dell EMC, Stephen found his passion in partnering with customers to solve data protection challenges for today’s enterprise and evolve modern data storage. He also spent time at NetApp as a senior technical director of data protection.

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print

Tagged With: cloud, Cybercriminals, data management, Dell, diabetes, health insurance, Healthcare Data, Malware, medical records, Patient Care

Tap Native

Get in-depth healthcare technology analysis and commentary delivered straight to your email weekly

Reader Interactions

Primary Sidebar

Subscribe to HIT Consultant

Latest insightful articles delivered straight to your inbox weekly.

Submit a Tip or Pitch

Featured Insights

 Selecting the Right EMR: A Practical Guide to Streamlining Your Practice and Enhancing Patient Care

Selecting the Right EMR: A Practical Guide to Streamlining Your Practice and Enhancing Patient Care

Featured Interview

Virta Health CEO: GLP-1s Didn’t Kill Weight Watchers, Its Broken Model Did

Most-Read

Meaningful Use Penalties_Meaningful Use_Partial Code Free_Senators Urge CMS to Establish Clear Metrics for ICD-10 Testing

CMS Finalizes TEAM Model: A New Era of Value-Based Surgical Care

White House Event Unveils CMS Health Tech Ecosystem Initiative

White House Event Unveils CMS Health Tech Ecosystem Initiative

Digital Health Faces Q2'25 Pullback: Funding Falls to 5-Year Low, But AI Dominates and $1B+ IPOs Emerge

Healthcare Investment Shifts in 1H 2025: AI Remains a Bright Spot Amidst Fundraising Decline

Digital Health Faces Q2'25 Pullback: Funding Falls to 5-Year Low

Digital Health Faces Q2’25 Pullback: Funding Falls to 5-Year Low

Beyond the Hype: Building AI Systems in Healthcare Where Hallucinations Are Not an Option

Beyond the Hype: Building AI Systems in Healthcare Where Hallucinations Are Not an Option

Health IT Sector Navigates Policy Turbulence with Resilient M&A

Health IT’s New Chapter: IPOs Return, Resilient M&A, Valuations Rise in 1H 2025

PwC Report: US Medical Cost Trend to Remain Elevated at 8.5% in 2026

PwC Report: US Medical Cost Trend to Remain Elevated at 8.5% in 2026

Philips Launches ECG AI Marketplace, Partnering with Anumana to Enhance Cardiac Care with AI-Powered Diagnostics

Philips Launches ECG AI Marketplace, Partnering with Anumana to Enhance Cardiac Care with AI-Powered Diagnostics

WeightWatchers Emerges from Bankruptcy, Launches New Menopause Program

WeightWatchers Emerges from Bankruptcy, Launches New Menopause Program

CMS Finalizes New Interoperability and Prior Authorization Rule

CMS Proposes 2026 Physician Fee Schedule Rule: Boosting Primary Care, Cutting Waste, and Modernizing Payments

Secondary Sidebar

Footer

Company

  • About Us
  • Advertise with Us
  • Reprints and Permissions
  • Submit An Op-Ed
  • Contact
  • Subscribe

Editorial Coverage

  • Opinion
  • Health IT
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Population Health Management
    • Revenue Cycle Management
  • Digital Health
    • Artificial Intelligence
    • Blockchain Tech
    • Precision Medicine
    • Telehealth
    • Wearables
  • Startups
  • Value-Based Care
    • Accountable Care
    • Medicare Advantage

Connect

Subscribe to HIT Consultant Media

Latest insightful articles delivered straight to your inbox weekly

Copyright © 2025. HIT Consultant Media. All Rights Reserved. Privacy Policy |