Healthcare Employees’ Behaviors Could Lead to Cybersecurity Risks

While healthcare facilities managers are making the right moves to better protect patient data, employee behaviors could risk exposure.

By HFT Staff


According to a new study, workers in the healthcare sector are mature, take security seriously and want to do more to protect patient data. However, the industry still has a shadow IT issue, poor password hygiene and inefficient processes for onboarding new clinicians. 

The Endpoint Ecosystem study examines the way employees perceive privacy, productivity, and personal wellbeing in the modern workplace. The study defines the Endpoint Ecosystem as the combination of all the devices, applications and tools plus the employee’s experience using that technology. The study presents a groundbreaking look at the tradeoffs between security and employee experience that every employer must face. 

“The Endpoint Ecosystem has always been important, but it became urgent over the last two years when the pandemic forced more people to work remotely, cybersecurity attacks increased and the Great Resignation forced employers to rethink how they support their employees,” says Denis O’Shea, founder of Mobile Mentor. “When the endpoint ecosystem works well, you have a secure, productive and happy workforce.” 

The study highlights the following findings specific to healthcare facilities: 

  • The healthcare industry has better password hygiene than other industries studied, but it is still very poor. Twenty-six percent of healthcare employees write their work passwords in a personal journal, and 24 percent admit to storing their passwords in notes on their phone. Seventy percent admit to choosing passwords that are easy to remember, and 20 percent reset their passwords every day. 
  • Healthcare has a shadow IT problem. More than 35 percent of employees say security policies restrict the way they work, and 29 percent admit to finding ways to work around security policies. Forty-eight percent of workers believe they are more efficient using non-work apps like Dropbox and Gmail. 
  • Healthcare workers generally understand the consequence and gravity of a security breach. Sixty-four percent of healthcare workers believe they will get fired for a data breach, while 57 percent believe their executives should be fired for a privacy breach. Twenty-eight percent know someone who exposed their employer to a data breach. 
  • Nearly one-third of healthcare employees believe they have not been adequately trained to protect company data, but the data shows that 59 percent of healthcare workers receive security awareness training monthly or quarterly. 
  • Bring your own device (BYOD) is a 15-year-old problem that has not yet been resolved in healthcare. Most healthcare workers use personal devices, but only 51 percent have BYOD securely enabled. Also, 28 percent of healthcare workers allow their family members to use their work devices for personal usage. 
  • Seventy-eight percent of healthcare employees feel their personal well-being is more important to them. Twenty-two percent said job satisfaction was more important. 
  • Healthcare workers are waiting nearly three days to get set up with new work devices and making two to three support calls or tickets to get fully onboarded. With a critical shortage of clinical staff, employers need a better onboarding process. 

In late 2021, Mobile Mentor commissioned CGK to field the study of 1,500 employees across four high-risk and highly regulated industries: healthcare, finance, education and government. Employees were in the United States and Australia. Each interview consisted of 25 questions to understand the way employees use devices in a post-pandemic world. The goal of the study is to gather data to educate and inform employers on the way devices in their industries are used, ways to prevent security breaches and ways to best support productive employees. 



April 5, 2022


Topic Area: Information Technology


Recent Posts

17 Million Patient Records Stolen in PIH Health Ransomware Attack

A ransomware attack halted operations across three of PIH’s hospitals.


Holidays are Prime Times for Healthcare Cyberattacks

A study found that 86 percent of organizations that experienced ransomware attacks were targeted on a holiday or weekend.


Hartford Healthcare Forms Partnership to Open Health Equity Clinic

The new clinic will open in January 2025.


UCHealth Reveals Plans for Memorial Hospital North Expansion

Construction on the patient tower is slated for 2026 with a projected opening to patients in 2029.


What Are 'Hospi-tels'?

Hospitals and hotels are partnering to better cater to patients and families.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.