This is a very interesting read and it is not just Health Care CIO’s/CISOs. We see the same in Financial Services and other industries focusing on compliance in lieu of actual security. Compliance can only begin with a secure organization!
From the study: “83 percent of surveyed healthcare organizations said they’ve seen an increase in cyberattacks over the past year with 66 percent of saying cyberattacks have become more sophisticated over the past year.”
BUT – When asked what was their biggest concern, these security leaders didn’t answer “cybersecurity” or how confident they are in their cybersecurity programs were, but instead their top answer was compliance for 33 percent of respondents… “compliance does not equal security”
Read the full article on SC Magazine here