惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

P
Proofpoint News Feed
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Microsoft Security Blog
Microsoft Security Blog
云风的 BLOG
云风的 BLOG
MongoDB | Blog
MongoDB | Blog
Know Your Adversary
Know Your Adversary
K
Kaspersky official blog
人人都是产品经理
人人都是产品经理
IT之家
IT之家
Recorded Future
Recorded Future
Recent Announcements
Recent Announcements
D
DataBreaches.Net
C
CXSECURITY Database RSS Feed - CXSecurity.com
U
Unit 42
博客园 - 【当耐特】
I
Intezer
Cisco Talos Blog
Cisco Talos Blog
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
H
Help Net Security
L
LangChain Blog
T
The Exploit Database - CXSecurity.com
P
Palo Alto Networks Blog
Scott Helme
Scott Helme
The GitHub Blog
The GitHub Blog
博客园_首页
P
Proofpoint News Feed
大猫的无限游戏
大猫的无限游戏
S
Secure Thoughts
The Register - Security
The Register - Security
Engineering at Meta
Engineering at Meta
T
Threatpost
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Blog — PlanetScale
Blog — PlanetScale
C
Cybersecurity and Infrastructure Security Agency CISA
T
Troy Hunt's Blog
罗磊的独立博客
腾讯CDC
Simon Willison's Weblog
Simon Willison's Weblog
Security Latest
Security Latest
Last Week in AI
Last Week in AI
P
Privacy & Cybersecurity Law Blog
Latest news
Latest news
The Cloudflare Blog
Jina AI
Jina AI
小众软件
小众软件
Cloudbric
Cloudbric
TaoSecurity Blog
TaoSecurity Blog
F
Full Disclosure
V
V2EX

Forbes - CIO Network

Ralliant’s Amir Kazmi On Wiring AI Into Critical Infrastructure Nvidia Buys Kumo AI To Bring AI Predictions To Business Data Anthropic's Fable 5 AI Model Offers More Power At A Higher Price Argentina Wants To Let AI Own Companies. Here’s What That Means The AI Conversation CEOs Are Not Having Out Loud Moneyball Meets AI: How The New York Jets Are Charting An AI Future How Anthropic, OpenAI and Nvidia Are Driving the AI Economy Wall Street Is About To Test AI's Trillion-Dollar Valuations The VPN Risk Too Many Companies Ignore The Agentic Enterprise Got A Major Upgrade This Summer. OpenAI, Anthropic And The $1 Trillion Question: Who Really Wins From AI? Trump's AI Evaluations Order: Right Policy, Unfinished Governance Trump's AI Order Creates A New Test For Frontier AI—And Public Trust Microsoft Build 2026 Reveals the Future of AI, Data and ERP Artificial Intelligence Positioned To Disrupt $5 Trillion Industry Healthcare CIOs Should Take Note Of Copilot Health Innovation At The Pace Of AI Requires A Different Corporate Metabolism How Expedia Is Reinventing Travel Through AI And Agentic Design The AI Risks CISOs Aren’t Talking About Enough Prat Vemana On Leading Technology, Product And AI Innovation At Target AI Spurs A Cultural Shift In A 1,000-Developer Insurance Company Rewiring Omnicom’s Operating Model For AI At Scale 4 AI Strategy Questions Every Executive Needs To Drive ROI Building A Retail Platform Across Iconic American Brands Why AI Likely Means More Work For Humans AI Flattening Organizations Is The Latest Chapter In A Continuing Story OpenAI And Anthropic Are Testing Two Very Different AI Business Models Why Nvidia Needs More Than GPUs To Win The AI Infrastructure Race Google Wants Gemini To Become The Operating Layer For AI Tokenomics 101: Cost Of Getting Work Done (Not The Cost Of Tokens). AI Security Threats Coming From Outside And Inside, And Few Are Ready The AI Trade Is Moving Beyond GPUs AI Turns Solo Workers Into Departments And VCs Are Paying Attention Employee’s AI Shortcut Triggers SEC Filing — Boards, Take Note Transforming Wealth Management Using AI At Citi Uber Burns Its 2026 AI Budget In Four Months On Claude Code AI Layoffs Are A Substitute For A Strategy The Last Competitive Advantage In Software Isn't Software Knowledge Management, The Tech World’s Step Child, May Be AI’s Salvation The AI Governance Talent Gap Is Smaller Than It Looks Capgemini Warns CEOs: Physical AI Can No Longer Be Ignored AI Opens Work Opportunities — We Just Can’t Imagine Them Yet Friendly Chatbots Make More Mistakes — And Annoy Your Customers More From Information Provider To AI Partner: Thomson Reuters’ Next Chapter AI Is Breaking Silicon Valley’s Global Playbook AI’s Data Surge Demands Action In A New Battle Over Creator Rights AI Transformation Of An Internet Era Success: The SurveyMonkey Story Could The Musk V. Altman Trial Change The AI Race? At Least 18% of Jobs Face Major AI Risk, OpenAI Economist Predicts As Musk Takes OpenAI To Court, Its $130 Billion Philanthropy Bet Faces A Trial OpenAI Publishes 5 Principles For Its AGI Push How Hearst Is Using Data And AI To Transform A 140-Year-Old Business 6 Employee Critiques About Their Companies’ AI Practices AI Boosts Productivity — And Fears Of Layoffs, Anthropic Study Finds How Mythos’ Vulnerability Apocalypse Will Play Out Alleged Claude Mythos Breach Raises Questions About AI Security Consumers Warm Up To AI, Will Trust Follow? Stop Cleaning Your Data. Start Finding The Signal. Architecture: A Question At The Core Of AI In The Enterprise Why Healthcare AI Still Struggles To Deliver QClaw Goes Global. The Agent Built Itself In 5 Days Apple’s Tim Cook Exit Hides A $4 Trillion Agentic AI Power Move AI’s Missing Link Is Accountability Can A Startup Turn Night Into Day Using Space Mirrors? Why Sam Altman’s Warning About A Big Cyberattack In 2026 Is Overblown Most Employees Are Learning AI By Osmosis These Days OpenAI GPT-5.4-Cyber — The Security Of Tomorrow Or A PR Response To Claude Mythos? UF Health Names Healthcare Vet Craig Richardville As New Tech Leader Allbirds Ran Toward AI And The Stock Surged 800% Lisa Davis Is Doing Something About Being The Only Woman In The Room AI May Be Running Out Of Data, Stanford Report Warns Is The Cult Of ‘Tokenmaxxing’Just Another Fad Or The New Normal? Inside Syngenta’s AI Driven Approach To Modern Agriculture Forget Bigger Models, Neuromorphic AI Thinks Like A Human Brain CoreWeave Becomes AI's Landlord With Meta And Anthropic Deals AI Slop Is Real. Your Adoption Strategy May Be Making It Worse. Cloud Investments Not Keeping Up With AI With AI, Job Searches And Recruiting May Be Less Onerous, Hopefully The One AI Question Boards Should Stop Asking Their CEOs Turner Construction Appoints Former GE Aerospace Exec As CIO Ignore The Doom Talk: AI’s Real Value Only Arises When Humans Step Up China’s Grassroots OpenClaw Is Rewriting The Global Agentic AI Race Anthropic–Pentagon Dispute Brings A Turning Point For The AI Industry AI Delivering Value And ROI, But Think Twice Before You Cut March 31 Is World Backup Day. Here’s How To Protect Your Data Now AI Doesn’t Fix Systems — It Exposes Them The Healthcare Rule CIOs Shouldn’t Overlook AI: The Cybersecurity Crisis That Vendors Love Where Digital And Robot-Based AI Agents Now Prevail Quantum Computing’s Next Major Breakthrough May Come From Australia 6 Ways To Rise Above An Increasingly AI-Saturated World The Real Shift Is Not AI Tools. It Is Workflow Ownership We Trust AI Over Our Own Brains, Research Finds Pravina Ladva On How Swiss Re Uses Data And AI To Build Resilience We’re Still Only Seeing AI’s First-Order Effects, Former Tesla Head States Why China Is Winning The Open Source AI Race AI Doesn’t Own The Customer Yet. Here’s How Retailers Can Keep It That Way Shobhit Varshney Of Citi On Scaling AI With Purpose And Discipline How AI Is Transforming Patient Health At Genentech Agentic AI Reshapes Nvidia Strategy Beyond GPUs At GTC
The Cyber Resilience Standard Every Hospital CIO Must Meet
David Chou · 2026-05-17 · via Forbes - CIO Network
Dad and son outdoors

Dad and son having fun outdoors.

getty

Health systems must deliver safe patient care for 30 days or longer without core technology systems. This is no longer a regulatory goal but the minimum operational standard for cyber resilience in healthcare. Most health system CIOs have not planned for this. The Joint Commission and the American Hospital Association started the Cyber Resilience Readiness (CRR) program to help hospitals assess and improve their ability to sustain clinical operations during extended cyber outages.

Cybersecurity is already expensive, with the average healthcare data breach costing $7.42 million. Greater costs come from daily downtime, lost revenue from manual charge capture and billing, and patients unable to access care and treatment.

The CRR program begins with a free self-assessment tool. It asks if your organization can provide safe care if technology fails. The survey covers many areas, but four themes are the top priority for a healthcare CIO.

Cyber Resilience Is Clinical Operations

The assessment highlights a key issue: clinical, business, emergency management, and disaster recovery are often siloed rather than integrated. Typically, IT manages application recovery, emergency management leads incident response, and clinical leadership oversees patient safety. These groups rarely collaborate before a crisis, resulting in last-minute coordination. CIOs should unite these departments proactively to ensure readiness.

The Board Must Be Involved

The CRR assessment asks how often leaders brief the board on cybersecurity and its impacts on patient care. It also asks whether boards distinguish clinical from business continuity. These topics are related but not the same. A CIO who links cyber risk to patient safety, revenue, and regulation will benefit the board.

Downtime Plans Must Work Operationally

The assessment's key takeaway is that downtime plans must be tested realistically across all shifts and service lines—not just annually, and not only in a conference room. Effective testing means running scenarios that stretch 30 days or more. Senior leaders must observe the exercises and act on findings. If drill results are ignored, the effort is wasted. Hospitals that survive cybersecurity events do so because staff have instinctive responses built through repeated, realistic practice.

Inventory Visibility Is Crucial.

Healthcare organizations must keep inventories of all biomedical devices, IoT systems, imaging devices, building controls, software, and anything on the network. They must map all assets to clinical risk. Hospitals have decades of connected technology, but no one department fully owns it all. The CIO must integrate asset visibility, data classification, vendor risk, and business continuity into one model. This includes medical equipment and other hardware on the network that are outside IT control.

The self-assessment does not score your organization; it identifies gaps for action. CIOs must decide who to brief, what to fix, and how fast to act—these choices differentiate compliance from resilience.

What’s Next For CIOs

The CRR program and assessment are a starting point. How a CIO uses its findings determines if it becomes a real advantage. Healthcare CIOs must build business continuity plans that last weeks, not just hours or days. They should run tabletop exercises for manual operations on days 3, 10, and 30.

CIOs should focus on a disaster recovery MVP that requires only the critical systems to keep operations running in a crisis. Full backups can be complex and costly. An MVP focuses on speed, simplicity, and effectiveness. The goal is fast recovery to a minimal but safe level.

Combining the CRR assessment with an MVP program is essential. Healthcare leaders must act now: assess resilience, make key improvements, and ensure teams can provide patient care for 30 days or more under any circumstances. The healthcare CIO can lead this challenge.