Symposium 1 - Cybersecurity

In today's rapidly evolving digital healthcare landscape, protecting patient data extends beyond mere compliance with privacy regulations. It encompasses ensuring the confidentiality, integrity, and availability of sensitive medical information across increasingly complex healthcare ecosystems. Traditional security measures, while foundational, are no longer sufficient against sophisticated cyber threats. Healthcare organisations face unique challenges: legacy systems, interconnected medical devices, and the critical nature of real-time healthcare delivery. These factors create vulnerabilities that cybercriminals actively exploit. 


To enhance patient data protection, organisations must adopt a multi-layered approach combining advanced technologies with robust processes. This includes implementing zero-trust architectures, continuous monitoring systems, and AI-powered threat detection. However, technology alone isn't the answer. Given that cybersecurity incidents are inevitable, healthcare organisations must develop comprehensive incident response plans specifically tailored to patient data breaches. This includes establishing clear communication protocols, maintaining business continuity, and ensuring minimal impact on patient care. 


The convergence of ICT and medical devices presents new challenges. As medical devices become more connected, they create additional attack surfaces that require specialised security considerations. This convergence demands a holistic approach to security, encompassing both traditional IT and medical device security. Crucially, cybersecurity is a team effort. Every member of the healthcare ecosystem, from clinical staff to IT personnel, plays a vital role. Building a strong security culture and addressing human factors are as important as technical solutions. 


Drawing from Singapore's healthcare digitalisation experience, this presentation will explore practical strategies for building resilient cybersecurity frameworks that protect patient data while enabling digital innovation in healthcare delivery.

In today's rapidly evolving cyber threats landscape, collaboration between clinical staff and IT is essential to address growing cybersecurity challenges. This presentation, led by the Chief Information Security Officer (CISO) of Hospital Authority, explores the unique cybersecurity challenges facing Hong Kong's healthcare sector, including ransomware and phishing. By strong collaboration between clinical and IT teams, healthcare organizations can build a resilient security posture that protects patient safety and ensures operational continuity.


Hong Kong's healthcare sector faces unique risks, from phishing attacks to operational disruptions caused by cyber incidents. By fostering a culture of shared responsibility, healthcare organizations can empower clinical staff to become active participants in safeguarding systems and data.


This talk will inspire healthcare professionals to take actionable steps toward building a collaborative environment, emphasizing the importance of communication, training, and continuous improvement.


Together, we can create a secure and resilient healthcare system in Hong Kong, ensuring the safety and trust of patients while maintaining the highest standards of care.