Articles and Toolkits on Cybersecurity

Cybersecurity and Risk Advisory Services

The American Hospital Association's Cybersecurity and Risk Advisory Services are designed to help you meet this moment. Our team of nationally recognized experts works with hospitals and health systems to identify gaps, strengthen defenses and build cross-functional resilience that protects your people, your operations and your mission.

Cybersecurity as a Clinical and Governance Imperative

The most important message for health care trustees is this: Cybersecurity is a governance responsibility.

Cybersecurity Awareness is a Board Responsibility

John Riggi discusses what trustees need to know about their hospital or health system’s cyberthreat plan.

AHA eBook: What Boards Should Know about Cybersecurity

This eBook (free for AHA members) assist trustees in asking key questions about their organizations’ cyber protocols.

Incorporating Cyberrisk Management into Enterprise Risk Management

This excerpt discusses the board’s role in prioritizing strategic cyberthreats and risk mitigation.

The Board's Role in Cybersecurity (Part Two)

Board members don’t need to be computer security experts to fulfill their role — but they should listen to them.

The Board's Role in Cybersecurity (Part One) 

With proper planning and investment, hospitals and health systems can reduce cyber risks and vulnerabilities.

Cybersecurity and Hospitals: A Board Perspective

Members of a hospital’s board have the responsibility to understand, at a high level, the risks and vulnerabilities the hospital faces with respect to cybersecurity, as well as the executive leadership’s security and response plans.