Premier Cybersecurity Resources for Hospitals

Hospitals face rising cyber threats. Premier’s guide highlights federal and private cybersecurity programs, funding, and threat-sharing resources to strengthen hospital defenses.

Healthcare faces increasing cyber threats from criminals and foreign adversaries. As critical infrastructure, hospitals need federal support, namely adding cyber to existing emergency preparedness funding programs, fostering two-way information sharing networks and incorporating healthcare more prominently into critical infrastructure programs.

Currently, federal cybersecurity funding for hospitals is confusing and difficult to find. To help providers access the resources that can help defend against cyber threats, Premier has put together a this list compiling cybersecurity grant programs and other resources from various federal agencies and private sector partners.

Premier cybersecurity resources

Health and human services

Hospitals can access the following cybersecurity resources:

  1. The ASPR Hospital Preparedness Program has funded cybersecurity programming, and Premier has advocated for a dedicated funding mechanism for cybersecurity.
  2. ARPA-H offers cybersecurity pilot programs that hospitals are eligible to participate in – recent (closed) examples include the UPGRADE and DIGIHEALS programs.
  3. HRSA offers grant programs that may include funding for cybersecurity or related projects.
  4. The 405(d) program offers a library of resources for hospitals, but no financial support.

Homeland security

Some resources are available to hospitals, often indirectly, as critical infrastructure support:

  1. Nonprofit hospitals can apply for funding from the Nonprofit Security Grant Program, which seeks to harden physical infrastructure.
  2. Hospitals may request that their state or local governments apply for funding from the State and Local Security Grant Program for healthcare-centered initiatives.
  3. Hospitals may request that their state or local governments apply for funding from the Emergency Management Performance Grant and Homeland Security Grant programs for healthcare and cyber initiatives.

Defense

As components of national security, healthcare can join certain DoD programs:

  1. Hospitals can bolster their cybersecurity workforce by applying for the Cyber Information Technology Exchange Program.

Information sharing

Healthcare organizations can join threat- and intelligence-sharing networks, including:

  1. CISA offers a number of free services, including the Cyber Hygiene Vulnerability Scanning Service.
  2. Hospitals may participate in public-private partnerships, like CISA’s Joint Cyber Defense Collaborative, or private sector-led threat-sharing networks, like the Health-ISAC.

Other/Private sector

A number of public and private sector projects provide additional resources to healthcare and hospitals:

  1. The Universal Services Administrative Co. offers the Healthcare Connect Fund Program, which provides a 65% discount on broadband connectivity and associated expenses for rural healthcare providers.
  2. The Center for Long-Term Cybersecurity at UC Berkeley and the CyberPeace Institute operate the Cyber Resilience Corps, which places cybersecurity experts in under-resourced hospitals in a volunteer capacity.
  3. The Institute for Security & Technology operates UnDisruptable27, which emphasizes the importance of cybersecurity resources to protect emergency care services from threats.
Join Now
Phone-alt Envelope Facebook Linkedin