Group asks radiologists to help address cybersecurity concerns

Marty Stempniak | | Radiology Business | Policy & Regulations

With imaging now living in a digital world free of films, radiologists must remain vigilant of potential threats from hackers.

The National Cybersecurity Center of Excellence (NCCOE) is well aware of such growing concerns and recently released draft guidelines to help safeguard picture archiving and communication systems. It’s essential the imaging business quickly take action, the group argued, to protect patient records and reduce the likelihood of a breach.

“PACS, by its nature, is a system that cannot operate in isolation,” the center of excellence, part of the National Institute of Standards and Technology, wrote in a summary of the guidelines. “The primary role of PACS is interaction with disparate medical imaging devices, interconnectivity with other clinical systems, and allowing a geographically and organizationally diverse team of healthcare professionals to review medical images to provide quality and timely patient care. Therefore, the threat landscape is broad.”

To help in drafting the guidelines, the NCCOE built a laboratory to mimic a medical imaging environment, assessed potential risks and identified controls to help better secure archiving systems. The center also collaborated with several vendors to develop the draft guidelines, which dropped in September.  

NCCOE noted that key ingredients of a PACS cybersecurity solution include:

  • “Network zoning” that allows for more precise control of digital traffic and limits communication functions to the bare minimum to support the business’ regular functions
  • Mechanisms to control access, such as multifactor authentication for providers and safeguards that limit vendors’ ability to remotely service medical imaging components
  • A “holistic” approach to addressing risk that also includes the management of medical device assets and tools that analyze behavior patterns to help manage cyber threats and vulnerabilities in real time

You can read the entire 359-page practice guide here. The NCCOE is accepting public comment on the guidelines until Nov. 18.

Marty Stempniak
Marty Stempniak

Marty Stempniak has covered healthcare since 2012, with his byline appearing in the American Hospital Association's member magazine, Modern Healthcare and McKnight's. Prior to that, he wrote about village government and local business for his hometown newspaper in Oak Park, Illinois. He won a Peter Lisagor and Gold EXCEL awards in 2017 for his coverage of the opioid epidemic. 

Related Content

Radiology at a crossroads: Hopes and concerns for a second Trump administration
Massachusetts governor signs bill to expand coverage for breast imaging services
Renewed optimism that radiologist-supported bill to ease prior authorization could pass by year’s end
AMA delegates voice concern about radiologists' exposure to ionizing radiation
Radiologists and other physicians want greater scrutiny around hospitals’ nonprofit status
Lantheus expects sales of ‘blockbuster’ cancer imaging agent to surpass $1B in 2024

Around the web

Cardiovascular Business
Global shortage of nuclear imaging isotopes may be over

The nuclear imaging isotope shortage of molybdenum-99 may be over now that the sidelined reactor is restarting. ASNC's president says PET and new SPECT technologies helped cardiac imaging labs better weather the storm.

Cardiovascular Business
‘A huge win’: CMS significantly increases Medicare payments for cardiac CT

CMS has more than doubled the CCTA payment rate from $175 to $357.13. The move, expected to have a significant impact on the utilization of cardiac CT, received immediate praise from imaging specialists.

Cardiovascular Business
GE HealthCare moves PET/CT scanner production to United States

The all-in-one Omni Legend PET/CT scanner is now being manufactured in a new production facility in Waukesha, Wisconsin.

Design by Adaptive Theme
Trimed Popup
Trimed Popup