Israel’s Privacy Protection Authority at the Ministry of Justice published a report on the findings of a broad oversight conducted by the Privacy Protection Authority in 28 hospitals in Israel, including outpatient centers and private hospitals.
In recent years, information security incidents in hospital systems have become more frequent and serious, reported the Authority. Calling this trend disturbing, the Authority said it intensified since the outbreak of the Iron Sword War, during which there has been a significant increase in hacking attempts and serious information security incidents affecting a wide range of organizations and sectors, including hospitals.
A comprehensive examination conducted by the Privacy Protection Authority revealed significant deficiencies in the Israeli hospital sector, and indicated the need to take significant steps to improve awareness and compliance with the provisions of the law and information security regulations in this sector.
The Departmental Supervision Report shows that in the criterion of information security, about 71% of the entities are at a high level of compliance, and about 20% are at a medium level of compliance with the provisions of the law and regulations. In the criterion of database management, one-third of the entities are only at a low level of compliance and about a third of the entities are at a medium level of compliance with the requirements of the law and regulations. In the criterion of organizational control and corporate governance, half of the entities are at a medium and low level of compliance with the requirements of the law and regulations.
Image - Reuters