by Lisa Munro | Mar 2, 2026 | Blog
A True Story on Implementation Healthcare did not wake up one morning and decide to adopt a new cybersecurity framework. Healthcare got here the way it gets to most operational change, through pressure and accumulation. Ransomware that shuts down clinics, third-party...
by Lisa Munro | Jan 26, 2026 | Blog
The 2026 J.P. Morgan Healthcare Conference reinforced a familiar but increasingly disciplined theme among healthcare investors: selective optimism. While expectations for a broad M&A rebound remain measured, private equity sponsors are nonetheless ready to deploy...
by Lisa Munro | Jan 23, 2026 | Blog
A conversation with Greg Garcia For much of the past decade, cyber risk in healthcare has been defined by reaction. Breaches exposed after the fact. Ransomware incidents that shut down operations overnight. Emergency funding and crisis communications layered on top of...
by Lisa Munro | Jan 23, 2026 | Blog
January 2026 OCR Update: In its January 2026 Cybersecurity Newsletter, the HHS Office for Civil Rights (OCR) delivered one of its most direct statements yet about how it expects HIPAA-regulated entities to approach cybersecurity going forward. OCR stated they will...
by Lisa Munro | Jan 23, 2026 | Blog
Tom Bunger, Fronz Batot, Cary Brown I was talking recently with the CISO of a large health system and I asked him: “What keeps you up at night?” His answer surprised me, not because it was shocking, but because it was refreshingly honest. It wasn’t...
