Group asks radiologists to help address cybersecurity concerns
Marty Stempniak | October 08, 2019 | Radiology Business | Policy & Regulations

With imaging now living in a digital world free of films, radiologists must remain vigilant of potential threats from hackers.

The National Cybersecurity Center of Excellence (NCCOE) is well aware of such growing concerns and recently released draft guidelines to help safeguard picture archiving and communication systems. It’s essential the imaging business quickly take action, the group argued, to protect patient records and reduce the likelihood of a breach.

“PACS, by its nature, is a system that cannot operate in isolation,” the center of excellence, part of the National Institute of Standards and Technology, wrote in a summary of the guidelines. “The primary role of PACS is interaction with disparate medical imaging devices, interconnectivity with other clinical systems, and allowing a geographically and organizationally diverse team of healthcare professionals to review medical images to provide quality and timely patient care. Therefore, the threat landscape is broad.”

To help in drafting the guidelines, the NCCOE built a laboratory to mimic a medical imaging environment, assessed potential risks and identified controls to help better secure archiving systems. The center also collaborated with several vendors to develop the draft guidelines, which dropped in September.  

NCCOE noted that key ingredients of a PACS cybersecurity solution include:

  • “Network zoning” that allows for more precise control of digital traffic and limits communication functions to the bare minimum to support the business’ regular functions
  • Mechanisms to control access, such as multifactor authentication for providers and safeguards that limit vendors’ ability to remotely service medical imaging components
  • A “holistic” approach to addressing risk that also includes the management of medical device assets and tools that analyze behavior patterns to help manage cyber threats and vulnerabilities in real time

You can read the entire 359-page practice guide here. The NCCOE is accepting public comment on the guidelines until Nov. 18.

Marty Stempniak
Marty Stempniak

Marty Stempniak has covered healthcare since 2012, with his byline appearing in the American Hospital Association's member magazine, Modern Healthcare and McKnight's. Prior to that, he wrote about village government and local business for his hometown newspaper in Oak Park, Illinois. He won a Peter Lisagor and Gold EXCEL awards in 2017 for his coverage of the opioid epidemic. 

Related Content

Raleigh Radiology and Duke battle it out over state’s certificate-of-need law
Abortion is an essential component of healthcare, majority of ACR Council rules
Private equity bankruptcies in healthcare explode 112% in 5 years
Highlights from RBMA's 2024 PaRADigm annual meeting in Las Vegas
US Senators continue their push for radiologist Medicare pay reform
American College of Radiology celebrates defeat of ‘harmful’ legislation in 2 states

Design by Adaptive Theme
Trimed Popup
Trimed Popup