Who should be held accountable for risk management and cybersecurity in healthcare institutions?

_I ’ve been involved in building many life-critical and mission-critical products over the last 25 years and have found that, finally, cybersecurity is getting the kind of attention it deserves. We’re slowly and steadily moving from “HIPAA Compliance” silliness into a more mature and discipline d professional focus on risk management, continuous risk monitoring, and actual security tasks concentrating on real technical vulnerabilities and proper training of users (instead of just “security theater”).
Source: The Healthcare IT Guy - Category: Information Technology Source Type: blogs