Cybersecurity: Guiding Principles and Risk Management Advice for Healthcare Boards, Senior Leaders and Risk Managers

Subject: Cyber

This resource is only available in PDF. To download, select the icon from the top right-hand corner of this page.

Authors: Arun Dixit, Jennifer Quaglietta, Kopiha Nathan, Leo Dias and Duke Nguyen (HIROC)



In recent years, the average cost of healthcare-related data breaches increased from approximately US$7 million in 2020 to over US$9 million in 2021. Moreover, breaches in healthcare have been consistently more costly than in other sectors for 11 consecutive years. With the frequency and costs of cyberattacks expected to rise, healthcare organizations must carefully plan for and identify strategies to mitigate cyber-related risks.

This paper provides practical guidance for boards, senior leaders and risk managers in the development and implementation of organization-specific cybersecurity measures, with a focus on the identification, mitigation and management of risks.


Download the PDF to access the full article. 

This article was originally published in the Longwoods Notes Healthcare Quarterly (Volume 25, No. 4) on February 21, 2023. Access the original publication on