Harnessing the Power of AI: Building Trust in Healthcare Cybersecurity
Revolutionizing Security Practices with AI
LAS VEGAS – At the HIMSS25 Healthcare Cybersecurity Forum, experts gathered to discuss the transformative potential of artificial intelligence (AI) in security operations. Embracing a methodical approach to AI systems can not only enhance efficiency but also foster greater trust within organizations, as emphasized by Anahi Santiago, Chief Information Security Officer at ChristianaCare.
Beneath the Surface: The Challenges of AI
Despite the promise of AI-driven efficiencies, Santiago emphasized that many organizations face challenges, including an overwhelming number of false positives generated by AI systems. “We’ve been adding more tasks to our teams as they struggle to differentiate between false alerts and actual threats,” she noted, highlighting that these challenges can consume valuable resources.
Toward Enhanced Innovation: The Next Frontier
Santiago pointed towards an evolving landscape of AI technologies ranging from agentic AI to artificial general intelligence (AGI). However, she pointed out that these advances necessitate a robust governance framework to ensure effective implementation and utilization. The question remains: how can healthcare organizations strike a balance between innovation and oversight?
Collaborative Intelligence: AI and Automation in Action
Bridget Karlin, former senior vice president of IT for Kaiser Permanente, brought another perspective to the table. She reported on the successful partnership between AI and automation to tackle various critical tasks like threat detection and incident response. "While we’re leveraging AI effectively, we’re still a distance away from achieving the cognitive capabilities of AGI," Karlin noted, echoing the call for continued development and responsible implementation.
The Complexity of Integration
Karlin, now a consultant, highlighted a significant hurdle: many healthcare environments are cluttered with legacy applications, making the deployment of new technologies a complex task. “It’s common to find systems from various vendors across different platforms, which complicates integration efforts,” she explained.
A Cautious Approach: Testing is Key
Mike Nelson, Vice President of Digital Trust at Digicert, stressed the importance of moving cautiously when integrating automation and AI. He advised that healthcare organizations should prioritize thorough testing and detailed analysis before rolling out new technologies. “Ensuring you’re moving methodically minimizes risks and enhances trust in these systems,” Nelson remarked.
Frameworks for Trust: A Recommended Path
Karlin advocated for establishing an initial framework centered around data transparency and accountability. Clear protocols regarding how data input relates to outcomes are essential for fostering trust. “We need to assess technologies, including AI, continuously,” she stated.
Guardrails for Navigation: Avoiding Pitfalls in AI Adoption
Nelson expanded on the importance of establishing guardrails amid a rush to adopt AI technologies. He asserted that many organizations pursue AI without fully understanding the implications or potential impacts, risking their overall cybersecurity posture.
Proof of Concept: A Rigorous Demand
For Santiago’s IT team, creating a successful proof of concept involves intense scrutiny of new tools to ensure they deliver on their promises. “We put significant effort into dissecting our tools to validate their effectiveness,” she shared. This level of diligence is key to minimizing risk and establishing confidence in deployed solutions.
Data Privacy and Vendor Relationships: An Ongoing Concern
Contract negotiations with software vendors have become increasingly complex, particularly regarding data usage. Santiago expressed her concern about third parties’ intentions to leverage ChristianaCare’s data for purposes outside their comfort zone, stressing the need for contractual clarity and limits.
The Crucial Role of Collaboration
In recognizing the cross-organizational nature of cybersecurity, Attila Hertelendy, panel moderator and assistant professor at Florida International University, underlined the escalating importance of collaboration in effective AI implementation, particularly during periods of change.
Governance as a Cybersecurity Backbone
Repeatedly, the need for strong governance emerged as a unifying theme. Karlin put it succinctly: “Governance is the backbone of cybersecurity strategy and a continuous learning process.”
Preparing for the Future: Quantum Computing Insights
As discussions progressed beyond AI, Nelson shifted gears to address another crucial topic: the looming threat of quantum computing. He warned that organizations need to start preparations for transitioning to quantum-resistant algorithms, as quantum technology is projected to scale up by the 2030s.
The Impending Security Transformation
“Quantum computing has the potential to disrupt today’s cybersecurity entirely,” Nelson cautioned, noting that the necessary migrations could take years. Critical sectors are encouraged to begin their transitions before 2029 to ensure their systems remain secure.
A Call to Action: Vulnerability Assessments
As organizations grapple with these changes, Nelson proposed initiating the transformation journey with vulnerable system identification. “Understanding your vulnerabilities is the first step toward a robust security posture,” he advised.
Embracing the Challenge: No Shortcuts Available
With complex challenges ahead, Nelson emphasized that there is no “easy button” for organizations navigating these transitions. A strategic, informed approach is necessary to harness the full potential of AI and maintain security amidst evolving threats.
Conclusion: Balancing Trust with Technology
The evolution of AI in healthcare cybersecurity requires a delicate balance; organizations must prioritize methodical implementation, rigorous testing, and transparency. As experts highlighted at HIMSS25, embracing AI is not merely about adopting the latest tools but fostering an environment of trust and collaboration. The path forward may be intricate, but a commitment to governance and a proactive stance on emerging threats ensures that organizations are well-positioned to harness the transformative power of AI securely.
Andrea Fox is senior editor of Healthcare IT News. You can reach her at afox@himss.org. Healthcare IT News is a HIMSS Media publication.
