Cybersecurity in Healthcare (Hospitals & Care Centres) from Coursera

The Cybersecurity in Healthcare MOOC was developed as part the SecureHospitals.eu project. This project has received funding from the European Union’s Horizon 2020 Coordination Research and Innovation Action under Grant Agreement No. 826497.

The course "Cybersecurity in Healthcare" has been developed to raise awareness and understanding the role of cybersecurity in healthcare (e.g., hospitals, care centres, clinics, other medical or social care institutions and service organisations) and the challenges that surround it. In this course, we will cover both theoretical and practical aspects of cybersecurity. We look at both social aspects as technical aspects that come into play. Furthermore, we offer helpful resources that cover different aspects of cybersecurity. Even if you are not active in the healthcare domain, you will find helpful tips and insights to deal with cybersecurity challenges within any other organisation or in personal contexts as well.

This course begins by introducing the opportunities and challenges that digitalisation of healthcare services has created. It explains how the rise of technologies and proliferation of (medical) data has become an attractive target to cybercriminals, which is essential in understanding why adequate cybersecurity measures are critical within the healthcare environment. In later modules, course contents cover the threats, both inside and outside of healthcare organisations like e.g. social engineering and hacking. Module 4 on Cyber Hygiene describes how to improve cybersecurity within healthcare organisations in practical ways. Module 5 looks deeper into how organisational culture affects cybersecurity, the cybersecurity culture, focusing on the interaction between human behaviour and technology and how organisational factors can boost or diminish the level and attention to cybersecurity in healthcare.

Do you work for a hospital, clinic, medical practice, care centre, care provider, social care organisation, or nursing home? Do you want to improve your personal or your organisation’s cybersecurity (cyber security, IT security, information security, network security, computer security, awareness)? Then please visit https://www.securehospitals.eu to gain access to a range of resources. You can also join the Security providers and Trainers platform (see: https://www.securehospitals.eu/for-providers-and-trainers/) or our Community of Practice (see: https://www.securehospitals.eu/community/).

What's inside

Syllabus

Cybersecurity in healthcare: technology, data, and human behaviour

It was predicted for 2020 that over 20 billion devices would be connected worldwide – from cell phones to wearable devices, from fridges to coffee makers, almost anything that can be connected to the internet will be connected. But how is increased interconnectivity affecting the healthcare sector – healthcare organisations, the people who work in them, and their patients? The increased digitalisation that we have seen and still see has many advantages, but widespread interconnectivity is also affecting cybersecurity across the world. Healthcare organisations have become a major target for cybercriminals because of the data they hold. Accidents that lead to data breaches can have severe consequences for the patients, staff members, and the healthcare organisation itself.How can healthcare organisations protect themselves, their staff and their patients against these growing threats? And how can healthcare professionals contribute to this process? In this first module, we will dive into the concept of cybersecurity and why it applies to healthcare. Furthermore, we will discover both the opportunities and challenges that have come into existence alongside digitalisation in healthcare. Finally, we will take a first look at the specific threats that healthcare and social care organisations may face. Note: Whenever you feel like you want more information but you don’t know where to start: we have an online library of a range of resources available to you. Please visit: https://www.zotero.org/groups/2280149/securehospitals/library. You can also find the link to the library in the ‘Resources’ tab in the menu.

Traffic lights

Read about what's good

what should give you pause

and possible dealbreakers

Provides basic information about cybersecurity for those working in healthcare and social care

Covers threats to cybersecurity in healthcare organizations and provides real-life examples

Focuses on the importance of cybersecurity in the healthcare sector

Addresses the social factors that may influence human behavior in relation to medical technologies

Explores the concept of cybersecurity culture and its impact on cybersecurity practices in healthcare organizations

Reviews summary

Cybersecurity for healthcare professionals

According to learners, this course provides a positive introduction to cybersecurity challenges specific to healthcare organizations. It effectively covers both social and technical aspects, delving into topics like social engineering and presenting real-life examples of data breaches and malware. Students appreciate the practical focus on cyber hygiene practices and the exploration of how organizational culture influences security. While serving as an excellent awareness-raising tool for healthcare professionals, some may find the technical depth to be introductory, making it more suitable for those new to the subject rather than advanced cybersecurity specialists.

Engaging case studies clarify complex concepts.

"The WannaCry case study made the real-world impact of attacks very clear."

"I found the use of actual incidents incredibly helpful for grasping the importance of cybersecurity."

"Learning through real scenarios brought the cybersecurity challenges to life for me."

Covers social, technical, and cultural aspects.

"I appreciated the balance between technical threats and human behavior, especially social engineering."

"The modules on cyber hygiene and security culture provided a holistic view."

"This course goes beyond IT, highlighting organizational factors critical for security within healthcare."

Highly practical for healthcare environments.

"I found the content directly applicable to my role in a medical clinic."

"The course perfectly addresses the unique cybersecurity risks in hospitals."

"It really helped me understand my part in securing patient data within a care center."

Ideal for awareness, less for advanced specialists.

"While great for a general overview, I was hoping for more in-depth technical analysis."

"As someone already in IT security, I felt some sections were a bit too basic."

"This course is excellent for raising awareness, but don't expect deep technical skills from it."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Cybersecurity in Healthcare (Hospitals & Care Centres) with these activities:

Review fundamental cybersecurity concepts

Show steps

Understanding basic cybersecurity concepts will provide a foundation for building and maintaining a strong security posture.

Browse courses on Cybersecurity Concepts

Show steps

Read articles or blog posts about core cybersecurity concepts
Review online resources, such as videos or tutorials, on cybersecurity basics

Review Fundamentals of Cybersecurity

Show steps

Refreshes the foundational knowledge of cybersecurity concepts and threats, preparing you for more advanced topics.

Browse courses on Cybersecurity

Show steps

Review basic cybersecurity concepts, such as confidentiality, integrity, and availability.
Familiarize yourself with common cybersecurity threats, such as malware, phishing, and ransomware.
Understand the principles of data encryption and authentication.

Practice identifying phishing emails

Show steps

Improve your ability to identify phishing emails and protect yourself from cyberattacks.

Browse courses on Social Engineering

Show steps

Take a phishing quiz
Analyze real-world phishing emails

Five other activities

Expand to see all activities and additional details

Show all eight activities

Learn about cybersecurity best practices for healthcare organizations

Show steps

Review cybersecurity best practices for healthcare organizations to strengthen your understanding of the topic.

Browse courses on Cybersecurity Best Practices

Show steps

Identify reputable sources of information on cybersecurity best practices for healthcare organizations.
Review articles, white papers, and case studies to learn about different approaches to cybersecurity in healthcare.
Summarize the key findings and recommendations from your research.

Create a Cybersecurity Plan for a Healthcare Organization

Show steps

Develops your understanding of cybersecurity risk assessment and mitigation strategies in a healthcare context.

Browse courses on Cybersecurity Incident Response

Show steps

Identify potential cybersecurity threats and vulnerabilities facing a healthcare organization.
Develop a plan for detecting, responding to, and recovering from cybersecurity incidents.
Implement security measures to protect patient data and systems.

Conduct a security assessment on a personal device

Show steps

Performing a security assessment on your own device will provide hands-on experience in identifying and addressing vulnerabilities.

Show steps

Choose a device to assess
Use security scanning tools to identify vulnerabilities
Analyze the results and identify areas for improvement
Implement measures to address the vulnerabilities

Conduct Simulated Cybersecurity Drills

Show steps

Provides hands-on experience in detecting, responding to, and remediating cybersecurity incidents.

Show steps

Define the scope and objectives of the simulation.
Create a realistic scenario based on common cybersecurity threats.
Conduct the simulation and monitor the performance of participants.

Participate in cybersecurity simulations

Show steps

Participating in cybersecurity simulations will allow you to experience real-life security scenarios in a controlled environment and enhance your response capabilities.

Browse courses on Security Training

Show steps

Identify and join cybersecurity simulation platforms or programs
Participate in simulations and follow the instructions
Analyze the results and identify areas for improvement

Career center

Learners who complete Cybersecurity in Healthcare (Hospitals & Care Centres) will develop knowledge and skills that may be useful to these careers:

Chief Information Security Officer (CISO)

A Chief Information Security Officer (CISO) is responsible for developing and implementing an organization's cybersecurity strategy. In healthcare organizations, CISOs play a critical role in ensuring that patient data is protected from unauthorized access, use, or disclosure. The Cybersecurity in Healthcare course can help prepare individuals for this role by providing them with a comprehensive understanding of the cybersecurity threats facing healthcare organizations and the best practices for mitigating these threats.

See salaries and explore the career path for Chief Information Security Officer (CISO)

Information Security Analyst

Information Security Analysts are responsible for monitoring and analyzing an organization's IT systems for security vulnerabilities. They also develop and implement security measures to protect these systems from unauthorized access, use, or disclosure. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific security challenges facing healthcare organizations.

See salaries and explore the career path for Information Security Analyst

Security Architect

Security Architects design and implement security solutions for organizations. They work with other IT professionals to identify and mitigate security risks, and they develop and implement security policies and procedures. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a comprehensive understanding of cybersecurity threats and vulnerabilities, as well as the best practices for designing and implementing security solutions.

See salaries and explore the career path for Security Architect

Security Consultant

Security Consultants help organizations to identify and mitigate security risks. They work with clients to develop and implement security strategies, and they provide training and support on cybersecurity best practices. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a comprehensive understanding of cybersecurity threats and vulnerabilities, as well as the best practices for developing and implementing security solutions.

See salaries and explore the career path for Security Consultant

Cybersecurity Engineer

Cybersecurity Engineers design, implement, and maintain cybersecurity systems. They work with other IT professionals to identify and mitigate security risks, and they develop and implement security solutions. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a comprehensive understanding of cybersecurity threats and vulnerabilities, as well as the best practices for designing and implementing security solutions.

See salaries and explore the career path for Cybersecurity Engineer

Healthcare IT Manager

Healthcare IT Managers are responsible for overseeing the IT operations of healthcare organizations. They work with other IT professionals to ensure that the organization's IT systems are secure, reliable, and efficient. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a comprehensive understanding of cybersecurity threats and vulnerabilities, as well as the best practices for implementing security solutions in healthcare organizations.

See salaries and explore the career path for Healthcare IT Manager

Healthcare Data Analyst

Healthcare Data Analysts collect, analyze, and interpret data to improve the quality and efficiency of healthcare services. They work with other healthcare professionals to identify and address patient safety issues, and they develop and implement data-driven solutions to improve patient care. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific security challenges facing healthcare organizations.

See salaries and explore the career path for Healthcare Data Analyst

Compliance Officer

Compliance Officers are responsible for ensuring that organizations comply with laws and regulations. They work with other employees to identify and mitigate legal risks, and they develop and implement compliance programs. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific legal and regulatory requirements facing healthcare organizations.

See salaries and explore the career path for Compliance Officer

Risk Manager

Risk Managers are responsible for identifying, assessing, and mitigating risks to an organization. They work with other employees to develop and implement risk management plans, and they monitor risks to ensure that they are managed effectively. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific risks facing healthcare organizations.

See salaries and explore the career path for Risk Manager

Auditor

Auditors review and evaluate an organization's financial and operational records to ensure that they are accurate and compliant with laws and regulations. They also provide recommendations for improving the organization's financial and operational performance. The Cybersecurity in Healthcare course may be useful for individuals who want to become Auditors by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific security challenges facing healthcare organizations.

See salaries and explore the career path for Auditor

Quality Assurance Manager

Quality Assurance Managers are responsible for developing and implementing quality assurance programs. They work with other employees to ensure that products and services meet quality standards, and they monitor quality to ensure that it is maintained. The Cybersecurity in Healthcare course may be useful for individuals who want to become Quality Assurance Managers by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific security challenges facing healthcare organizations.

See salaries and explore the career path for Quality Assurance Manager

Data Privacy Officer

Data Privacy Officers are responsible for overseeing an organization's data privacy program. They work with other employees to ensure that the organization complies with data privacy laws and regulations, and they develop and implement data privacy policies and procedures. The Cybersecurity in Healthcare course may be useful for individuals who want to become Data Privacy Officers by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific data privacy challenges facing healthcare organizations.

See salaries and explore the career path for Data Privacy Officer

Security Awareness Trainer

Security Awareness Trainers develop and deliver security awareness training programs for employees. They work with other IT professionals to identify the organization's security risks, and they design and deliver training programs to help employees to avoid these risks. The Cybersecurity in Healthcare course can help individuals prepare for this role by providing them with a comprehensive understanding of cybersecurity threats and vulnerabilities, as well as the best practices for developing and delivering security awareness training programs.

See salaries and explore the career path for Security Awareness Trainer

IT Project Manager

IT Project Managers plan, organize, and execute IT projects. They work with other IT professionals to ensure that projects are completed on time, within budget, and to the required quality standards. The Cybersecurity in Healthcare course may be useful for individuals who want to become IT Project Managers by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific challenges facing healthcare IT projects.

See salaries and explore the career path for IT Project Manager

Information Security Manager

Information Security Managers are responsible for overseeing an organization's information security program. They work with other IT professionals to develop and implement security policies and procedures, and they monitor security to ensure that it is maintained. The Cybersecurity in Healthcare course may be useful for individuals who want to become Information Security Managers by providing them with a foundation in cybersecurity concepts and practices, as well as an understanding of the specific security challenges facing healthcare organizations.

See salaries and explore the career path for Information Security Manager