MITRE Warns Cloud-Based Medical Devices Face Cascading Ransomware Risk Across Health Systems
MITRE’s April 2026 white papers warn that cloud‑native medical devices create a cascade effect for ransomware, as a single cloud outage can disrupt dozens of hospitals. The reports highlight shared‑responsibility gaps among device makers, health systems, and cloud providers, and call for clearer SLAs, hybrid architectures, and contingency plans. They also flag AI‑driven device risks, post‑quantum cryptography threats, and inconsistent SBOM practices as compounding factors that could magnify patient‑safety incidents.
Dayton Children’s Whitlock Says TEFCA Trust Model Needs Stronger Guardrails to Stop Data Misuse
In this episode, Dayton Children’s CIO J.D. Whitlock discusses the challenges of TEFCA’s trust model, highlighting how inadequate guardrails have allowed patient data to be misused for non‑clinical purposes, exemplified by the Health Gorilla lawsuit. He explains the complex governance...
UNC Health’s Moosavi Says Analytics Teams Must Deeply Understand Requests Before Moving Forward; No Place for Ticket-Taking
In this episode, UNC Health’s Chief Analytics Officer Rachani Moosavi discusses how analytics teams must deeply understand stakeholder needs before building solutions, emphasizing that analytics is not a ticket‑taking function. She shares her diverse background—from nursing aide to patient‑flow consulting...
Behavioral Health EHR Use Rises, Exchange Still Lags
Behavioral health providers have largely digitized patient records, with 68% using only electronic health records (EHRs) and another 25% operating a hybrid of EHRs and paper. Adoption varies by ownership: federal facilities report 97% EHR‑only use, while state‑run sites lag...
KLAS Finds Health Systems Hyper-Focused on Cost-Reduction Likely Spurring Burnout
KLAS research of 42 CMIOs and CNIOs finds that health systems that prioritize cost reduction experience a 35% clinician burnout rate, compared with 26% where cost is lower on the agenda. The study links aggressive cost‑first strategies to higher turnover,...
Technology Giveth and Taketh Away
Anthony Guerra revisits Shelby Foote’s three‑part Civil War audiobook, praising its narrative flair compared with today’s AI‑generated prose. He cites Ethan Mollick’s warning that AI often produces bland text, highlighting the loss of style. The piece then shifts to healthcare, noting...
HSCC Unveils 3rd-Party AI Risk & Supply Chain Transparency Guide
The Health Sector Coordinating Council’s Cybersecurity Working Group released an AI Cyber Glossary and a 109‑page "Health Industry Third‑Party AI Risk and Supply Chain Transparency Guide." The guide outlines a seven‑phase lifecycle for AI vendor risk, drawing from NIST’s AI...
ONC’s Keane Says Government Will Strengthen TEFCA Onboarding to Address Provider Privacy Concerns
In this episode, ONC National Coordinator Tom Keen discusses recent organizational changes at ONC, the dual‑lane approach of TEFCA and CMS‑aligned networks, and how the government is strengthening TEFCA onboarding to address provider privacy concerns. He explains that ONC will...
Julia Sand & The Art of Inspiration
Anthony Guerra argues that inspiration, more than strategy or coaching, is the key driver of high‑functioning teams. He illustrates this with the historical case of President Chester A. Arthur, whose unexpected moral shift followed a series of letters from Julia Sand urging him...
Penn State Health’s DeFlitch & Hijjawi Say Past Lessons Can Help Guide Today’s AI Implementations
In this episode, Penn State Health’s Chief Medical Information Officer Dr. Chris DeFlich and Associate CMIO Dr. Shadi Hijawi discuss how past experiences with electronic health record (EHR) implementation can inform today’s rapid rollout of artificial intelligence (AI) tools in...
Cyber-Physical Security Gaps Demand Attention, Health-ISAC’s 2025 Exercise Series Finds
Health‑ISAC’s 2025 resilience exercise series revealed persistent gaps in coordinating cyber and physical security teams across seven simulated ransomware‑plus‑intrusion tabletop drills. Participants repeatedly reported fragmented communication, delayed escalation, and insufficient joint response procedures. The after‑action report distilled twelve priority observations,...
Corewell Health’s Jarve Says Population Health Data Challenges Demand Internal Builds
In this episode, Dr. Bob Jarvie, Associate CMIO and Medical Director for Population Health Analytics at Corewell Health, explains why the health system built its own internal population health data platform instead of relying on external vendors. He highlights the...
Health System CIOs Say EHR Downtime Resilience Requires Organization-Wide Ownership, Rehearsed Plans, and Structured Documentation
The panel explored how health systems can achieve operational resilience during EHR downtime, emphasizing that resilience is an organization‑wide capability rather than just an IT issue. CIOs Chris Akeroy (Lee Health) and Stuart James (Christus Health) highlighted the need for...
Sharp HealthCare’s Korn Says Spatial Computing Gives Clinicians Superpowers, But Demands a Strong IT Foundation
In this episode, Dr. Tommy Korn, Sharp Healthcare’s Chief Spatial Computing Officer and practicing ophthalmologist, explains how the health system is leveraging Apple Vision Pro devices to give clinicians "superpowers" through spatial computing. He outlines the dual role of his...
The Big Squeeze
Anthony Guerra recounts a disappointing first visit to a newly opened restaurant, citing cramped bench‑style seating, an under‑filled margarita with an oversized ice cube, a limited and odd menu, and a single‑occupancy men’s room. He argues these missteps stem from...
EMR Optimization: Why Ambient AI Can’t Fix a Broken EHR
The panel discussed practical approaches to EMR/EHR optimization, emphasizing that hidden workflow friction—not just software bugs—drives clinician burnout. They highlighted the need for combined quantitative analytics (e.g., usage dashboards, sentiment analysis) and qualitative methods (shadowing, listening sessions) to surface problems,...
Too Stubborn to Surrender
Anthony Guerra reflects on the power of stubborn resilience, drawing on World War I’s Battle of the Marne, the Battle of Britain, and Napoleon’s 1812 Russian campaign. He argues that an opponent’s visible strength often hides deep fatigue, and refusing...
Cooper University Health Care’s Curran Says Cross-Functional Collaboration Was the Key to Securing More Than 10,000 Edge Devices
Cooper University Health Care completed an 18‑month program that lifted device visibility from 25 percent to 100 percent across more than 10,000 IoT and medical devices. The effort relied on passive network‑monitoring tools, rigorous network segmentation, and a new security‑by‑procurement framework. A...
NYU Langone Health’s O’Brien & Major Explain Keys to Effective Nursing/AI Partnership
NYU Langone Health has built a structured partnership between nursing informatics and data science that fuels AI tool development and adoption. Since 2019, the collaboration has produced decision‑support models, a pressure‑injury prevention system, and a fall‑prediction tool, all vetted through...
Northwestern Medicine’s Sama Says AI Optimization Requires a New Data Foundation
During HIMSS 2026, Northwestern Medicine’s VP Danny Sama warned that health‑system AI initiatives are outpacing investment in core data infrastructure. He noted that roughly 80 percent of effort is spent on AI while the underlying data plumbing remains underfunded, exposing technical debt....
New York-Presbyterian’s Linsangan Says Live Simulations Expose What Tabletop Exercises Miss
New York‑Presbyterian launched live downtime simulations across its ten hospitals after a cyberattack at a peer institution highlighted systemic vulnerabilities. The exercises, run during peak daytime hours on real patient scenarios, revealed that many clinicians lacked paper‑charting experience, struggled with medication...
AMA Finds 70 Percent of Physicians See AI as a Burnout-Reduction Tool
The AMA’s 2026 Physician Survey shows AI adoption has more than doubled, with 81% of doctors now using AI tools versus 38% in 2023. Physicians average 2.3 AI use cases, driven by clinical documentation and research summarization. Seventy percent view...
Giving Order to the Chaos
Anthony Guerra, founder of healthsystemCIO, shares his personal productivity system built around Apple Reminders. He structures a master "Work" list with sub‑lists, sections, and date‑based items that he drags and updates throughout the day. The core insight is that effective prioritization—not...
Catholic Health’s Duemling Says Cybersecurity Should Be Managed Like a Chronic Condition
In this episode of the Health System CIO Show, CISO Keith Dumling discusses his first year at Catholic Health, emphasizing the importance of listening to the organization’s culture before acting and integrating quick wins into a longer‑term cybersecurity roadmap. He...
CTG’s Kochan Says Patient-Centric Workflow Mapping Exposes Gaps Product-Focused IT Teams Can Miss
In this HIMSS‑recorded episode, CTG healthcare solutions architect Christina Kochan, a registered nurse turned informaticist, explains how patient‑centric workflow mapping uncovers gaps that product‑focused IT teams often overlook. She stresses the importance of understanding current clinical processes, performing gap analysis,...
HSCC, Health-ISAC Launch National Cyber Exercise to Test Healthcare Incident Response
Operation Vital Signs, a national cyber‑security stress test, will be co‑hosted by the Health Sector Coordinating Council’s Cybersecurity Working Group and Health‑ISAC on July 21‑22. The virtual two‑day exercise simulates a cyber incident that threatens critical functions and patient safety across...
HHS Launches Cybersecurity Module Within RISC 2.0 Toolkit
The Administration for Strategic Preparedness and Response (ASPR) has added a cybersecurity module to its Risk Identification and Site Criticality (RISC) 2.0 Toolkit, giving health systems a standardized way to assess cyber risk. The module uses a questionnaire scored against the...
CIOs Agree Variability the Enemy of Large-Scale IT Shops
At a ViVE conference, CIOs from Christus Health, SSM Health and HCA Healthcare warned that variability, not scale, is the primary cost driver for large health systems. They highlighted governance gaps that allow endless project approvals but few rejections, leading...
St. James Hospital Dublin’s Giunti Says AI Transformation Starts With Literacy
In this episode, St. James Hospital Dublin’s Chief Data Officer Guido Giunti explains why AI transformation in healthcare must begin with AI and data literacy across all staff, not just technology deployment. He describes a blended top‑down and bottom‑up strategy that uses...
Penn Medicine’s Cook Says You Can’t ‘Set It and Forget It’ With Clinical AI
Dr. Tessa Cook, an associate professor and vice chair of practice transformation in radiology at Penn Medicine, discusses how her team approaches clinical AI implementation. She emphasizes a systematic, "set it and forget it" mindset is unrealistic; instead, AI tools...
Institutional Familiarity & Product-Specific Knowledge Keys for Health Systems Selecting Managed IT Services Partners, KLAS Finds
A February 2026 KLAS Research analysis of 19 health‑system IT outsourcing decisions found pre‑existing vendor relationships to be the top driver of managed‑IT services selection, eclipsing cost, expertise and credibility. The study identified five firms—CereCore, HCTec, Nordic, Impact Advisors and CTG—as...
Newman Explains How Sanford Health Is Virtually Rewriting the Rural Health Playbook
Dave Newman, MD, Chief Medical Officer of Virtual Care at Sanford Health, explains how the system’s expansive virtual care program—spanning 78 specialties across 300,000 square miles—has become essential for rural patients, saving them an average of 176 miles per visit....
IT Execs Seek to Tame Application Sprawl Without Stifling Innovation Through Shared Governance
In a healthsystemCIO webinar, senior IT leaders from RWJBarnabas Health, Ardent Health Services, and the University of Maryland Medical System discussed how to manage the flood of application requests while fostering innovation. They emphasized establishing a single, standardized intake point,...
Health First’s Carr Weaves Tapestry for Integrated Payer-Provider Platform
In this episode, Michael Carr, VP and CIO of Health First, discusses the organization’s integrated payer‑provider platform built on Epic’s suite, including the provider rollout and the Epic Tapestry health‑plan implementation. He highlights how consolidating nine disparate systems into a...
EHR/PM Integration Biggest Satisfier for Ambulatory Software Suites, KLAS Finds
The episode reviews KLAS Research’s 2026 report on comprehensive ambulatory EHR and practice‑management (PM) suites, revealing that integration of clinical and financial workflows is the top driver of satisfaction for ambulatory organizations. The study of 176 providers shows 71% value...
Epic’s Infection Prevention Module Needs More TLC Than Others, KLAS Finds
The February 2026 KLAS report reveals that Epic’s infection prevention module, Buggy, lags behind all other Epic inpatient products with an overall performance score of 80.6, and shows a stark divide between IT (91.4) and infection preventionist (73.9) satisfaction. Key...