Free Hospital EMR and EHR Newsletter Want to receive the latest news on EMR, Meaningful Use, ARRA and Healthcare IT sent straight to your email? Join thousands of healthcare pros who subscribe to Hospital EMR and EHR for FREE!

Despite Risks, Hospitals Connecting A Growing Number Of Medical Devices

Posted on July 20, 2018 I Written By

Anne Zieger is veteran healthcare branding and communications expert with more than 25 years of industry experience. and her commentaries have appeared in dozens of international business publications, including Forbes, Business Week and Information Week. She has also worked extensively healthcare and health IT organizations, including several Fortune 500 companies. She can be reached at @ziegerhealth or www.ziegerhealthcare.com.

Over the past few years, hospitals have gotten closer and closer to connecting all of their medical devices to the Internet — and more importantly, connecting them to each other and to critical health IT systems.

According to a new study by research firm Frost & Sullivan, most hospitals are working to foster interoperability between medical devices and EHRs. By doing so, they can gather, analyze and present data important to care in a more sophisticated way.

“Hospitals are developing connectivity strategies based on early warning scores, automated electronic charting, emergency alert and response, virtual intensive care units, medical device asset management and real-time location solutions,” Frost analysts said in a prepared statement.

Connecting medical devices to other hospital infrastructure has become so important to the future of healthcare that the FDA has taken notice. The agency recently issued guidance on how healthcare organizations can foster interoperability between the devices and other information systems.

Of course, while hospitals would like to see medical devices chat with their EHRs and other health IT systems, it’s just one of many important goals hospitals have for data collection and analysis. Health IT executives are up to the eyebrows supporting big data transformation, predictive analytics and ongoing EHR management, not to mention trying out soon-to-be standard technologies such as blockchain.

More importantly, few medical devices are as secure as they should be. While the average hospital room contains 15 to 20 connected devices, many of them are frighteningly vulnerable. Some of them are still running on obsolete operating systems, many of which haven’t been patched in years, or roughly 1,000 years in IT time. Other systems have embedded passwords in their code, which is one heck of a problem.

While the press plays up the possibility of a hacker stopping someone’s connected pacemaker, the reality is that an EHR hack using a hacked medical device is far more likely. When these devices are vulnerable to outside attacks, attackers are far more likely to tunnel into EHRs and steal patient health data. After all, while playing with a pacemaker might be satisfying to really mean people, thieves can get really good money for patient records on the dark web.

All this being said, connected medical devices are likely to become a key part of hospital IT infrastructure in hospitals over time as the industry solves these problems, Frost predicts that the global market for such devices will climb from $233 million to almost $1 billion by 2022.

It looks like hospital IT executives will have some hard choices to make here. Ignoring the benefits of connecting all medical devices with other data sources just won’t work, but creating thousands of security vulnerabilities isn’t wise either. Ultimately, hospital leaders must find a way to secure these devices ASAP without cratering their budget, and it won’t be easy.

The Forgotten Pieces of Healthcare IT

Posted on August 27, 2014 I Written By

John Lynn is the Founder of the HealthcareScene.com blog network which currently consists of 10 blogs containing over 8000 articles with John having written over 4000 of the articles himself. These EMR and Healthcare IT related articles have been viewed over 16 million times. John also manages Healthcare IT Central and Healthcare IT Today, the leading career Health IT job board and blog. John is co-founder of InfluentialNetworks.com and Physia.com. John is highly involved in social media, and in addition to his blogs can also be found on Twitter: @techguy and @ehrandhit and LinkedIn.

I’ve obviously been thinking a lot lately about the rest of the healthcare IT world beyond EHR software. We’ve had such a focus on EHR software, that we’ve forgotten a lot of other IT projects that need attention. I saw a quote recently that a CIO is no longer just managing the IT infrastructure. I believe that’s spot on.

A hospital CIO needs to be an integral part of the business decisions of their organization. You can’t buy a few hundred million (or a few billion) dollar EHR and not think that it won’t have a major economic impact on your organization. However, while a hospital CIO needs to do more than just IT infratructure, they still have to do the IT work as well.

I was thinking about all of the various IT projects that a hospital CIO could still be managing:

  • Internal Network
  • External Internet Connection
  • Firewalls
  • Data Center (this could be a few hundred things in itself)
  • Servers/Virtualization
  • Desktops (virtual or otherwise)
  • Mobile Devices (cell, tablets, etc.)
  • Telephony
  • Identity Management
  • Email
  • Shared Drives
  • Printers
  • Scanners
  • Biometrics

I’m sure I’m leaving some obvious ones off. Please add to the list in the comments. However, even just looking at this is pretty overwhelming. Luckily, most hospital CIOs have a lot of people helping them support all of these efforts. However, each one needs to be considered and managed.

Take a simple example like email. You’d think we’d have it down to a science and we kind of do. However, if you host it in house, you have to constantly stay on top of it, update the software, manage mailbox sizes, spam filters, etc. Whether you outsource your email or keep it in house you also have to manage all the account creation and deletion. You have to provide ongoing help desk support and training.

The point I’m trying to make is that each one of these technologies has its little nuances. It takes time and effort to do them well. Unfortunately, many of them have been transgressed as the all hands on deck EHR efforts have occurred. Now we’re heading back to clean up these messes. Looking at the list above, there are a lot of possible messes waiting for a hospital CIO.