Assessing the impact of technology partners on the level of cyberattack damage in hospitals

IF 3.4 3区医学 Q1 HEALTH POLICY & SERVICES

Health Policy and Technology Pub Date : 2025-02-01 DOI:10.1016/j.hlpt.2024.100955

Yannik Angler , Steffen Flessa , Emilia Grass , Olav Goetz

{"title":"Assessing the impact of technology partners on the level of cyberattack damage in hospitals","authors":"Yannik Angler , Steffen Flessa , Emilia Grass , Olav Goetz","doi":"10.1016/j.hlpt.2024.100955","DOIUrl":null,"url":null,"abstract":"<div><h3>Objective</h3><div>Reliable performance of medical devices is crucial for hospitals. However, these devices are increasingly connected with the internet and, thus, prone to cyberattacks resulting in risks for patient safety and financial loss. As the number of specialists in this field is limited in most hospitals, technology partnerships with medical technology manufacturers can be a suitable concept for increasing the level of security or limiting damage in the event of a cyberattack.</div></div><div><h3>Methods</h3><div>Based on a discrete event simulation model (DES), the effects of security incidents with different degrees of impact on downtime costs, length of stay, staff utilization and lost arrivals in an emergency department of a general hospital were modelled and simulated. The effects of a technology partnership were simulated using what-if scenarios in order to be able to draw conclusions about the benefits by comparing the avoidable damage effects and the investment costs incurred for a technology partnership.</div></div><div><h3>Results</h3><div>Depending on the scenario, the resulting savings range from €245,579 to €315,768, with a cost-benefit ratio between 4 and 5 over a 21-day period. Non-financial benefit (e.g. shorter lengths of stay or reduction IT resources) can also be achieved.</div></div><div><h3>Conclusion</h3><div>Our analysis demonstrates that the level of security for hospitals and their medical devices as well as the operational functionality in the event of damage can be increased if such a concept it applied, i.e., patient safety can be increased while costs can be cut.</div></div>","PeriodicalId":48672,"journal":{"name":"Health Policy and Technology","volume":"14 1","pages":"Article 100955"},"PeriodicalIF":3.4000,"publicationDate":"2025-02-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Health Policy and Technology","FirstCategoryId":"3","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2211883724001187","RegionNum":3,"RegionCategory":"医学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"HEALTH POLICY & SERVICES","Score":null,"Total":0}

引用次数: 0

Abstract

Objective

Reliable performance of medical devices is crucial for hospitals. However, these devices are increasingly connected with the internet and, thus, prone to cyberattacks resulting in risks for patient safety and financial loss. As the number of specialists in this field is limited in most hospitals, technology partnerships with medical technology manufacturers can be a suitable concept for increasing the level of security or limiting damage in the event of a cyberattack.

Methods

Based on a discrete event simulation model (DES), the effects of security incidents with different degrees of impact on downtime costs, length of stay, staff utilization and lost arrivals in an emergency department of a general hospital were modelled and simulated. The effects of a technology partnership were simulated using what-if scenarios in order to be able to draw conclusions about the benefits by comparing the avoidable damage effects and the investment costs incurred for a technology partnership.

Results

Depending on the scenario, the resulting savings range from €245,579 to €315,768, with a cost-benefit ratio between 4 and 5 over a 21-day period. Non-financial benefit (e.g. shorter lengths of stay or reduction IT resources) can also be achieved.

Conclusion

Our analysis demonstrates that the level of security for hospitals and their medical devices as well as the operational functionality in the event of damage can be increased if such a concept it applied, i.e., patient safety can be increased while costs can be cut.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Health Policy and Technology Medicine-Health Policy

CiteScore

9.20

自引率

3.30%

发文量

审稿时长

88 days

期刊介绍： Health Policy and Technology (HPT), is the official journal of the Fellowship of Postgraduate Medicine (FPM), a cross-disciplinary journal, which focuses on past, present and future health policy and the role of technology in clinical and non-clinical national and international health environments. HPT provides a further excellent way for the FPM to continue to make important national and international contributions to development of policy and practice within medicine and related disciplines. The aim of HPT is to publish relevant, timely and accessible articles and commentaries to support policy-makers, health professionals, health technology providers, patient groups and academia interested in health policy and technology. Topics covered by HPT will include: - Health technology, including drug discovery, diagnostics, medicines, devices, therapeutic delivery and eHealth systems - Cross-national comparisons on health policy using evidence-based approaches - National studies on health policy to determine the outcomes of technology-driven initiatives - Cross-border eHealth including health tourism - The digital divide in mobility, access and affordability of healthcare - Health technology assessment (HTA) methods and tools for evaluating the effectiveness of clinical and non-clinical health technologies - Health and eHealth indicators and benchmarks (measure/metrics) for understanding the adoption and diffusion of health technologies - Health and eHealth models and frameworks to support policy-makers and other stakeholders in decision-making - Stakeholder engagement with health technologies (clinical and patient/citizen buy-in) - Regulation and health economics