Security

HIMSS26: Understanding Clinical Care Resilience as an Ongoing Process

Healthcare leaders should not treat planning downtime procedures as a one-and-done project, as industry experts in Las Vegas share.

Teta Alim

Teta Alim is the managing editor of HealthTech. Teta previously worked as a digital journalist in Washington, D.C.

Healthcare organizations should be prepared to keep operating in the event of planned or unplanned downtime. Besides the impact any amount of downtime can have on patient care, multiple days of it can spell financial troubles for an organization.

That’s why the security focus during the 2026 HIMSS Global Health Conference and Exhibition spotlighted lessons for building up clinical care resilience so that clinical teams and other departments have access to critical applications, such as the electronic health records system, and can adapt their procedures to updated expectations.

For instance, Matt Dinger, leader on the worldwide public sector global healthcare team at Amazon Web Services, discussed how, although switching to paper charting is thought of as the natural next step for an offline EHR, many clinicians today have never been trained on paper.

“If your EHR is unavailable, you don't have the clinical history for those patients. You don't necessarily know all of the medications that they're on. You don't know other health issues that they may be faced with that are not included in the immediate reason that you are treating them right there. So, there absolutely is a clinical impact on the patients no matter how hard our clinicians work in an already burdensome environment,” Dinger said.

And so, it may be more appropriate for healthcare organizations to have an isolated recovery environment (IRE) ready to deploy.

Click the banner below to learn why cyber resilience is essential to healthcare success.

ht-cyberresillience1-static-2024-na-desktop

ht-cyberresillience1-static-2024-na-mobile

IREs Do Not Replace Good Disaster Recovery

Cyberthreats are evolving constantly. Now, malicious actors may target an organization’s backup systems, making recovery all the more difficult in healthcare. IREs are a separate, air-gapped environment for data and system recovery that may offer organizations a quicker turnaround to keep operations running.

But healthcare organizations should not rely solely on IREs for their cyber resilience.

“This environment is not a replacement for high availability. It is not a replacement for good disaster recovery. The first thing people see when they see this is, ‘Oh, we don't need downtime computers anymore. Oh, why don't we just fail over to this when we have a three-hour outage?’ No. This is not that, and should never be that,” said Jeffrey Thomas, senior vice president and CTO at Virginia-based Sentara Health. “This is really what we call a lifeboat. It helps us bridge the gap.”

WATCH: Learn about the risks and rewards of agentic artificial intelligence at HIMSS26.

Not just a single solution, IREs can help organizations reassess their cyber resilience through a more holistic, multidisciplinary lens. For example, a zero-trust framework is a foundational architectural component of an IRE.

“If you're not building in cloud with a zero-trust framework, you probably are just replicating the same issues you have in your physical data center,” Thomas said. “That is the basis of it — least privileged access, using the controls appropriate to segment, to microsegment and control the flow of data when it's in that environment.”

How, then, can organizations ensure that the right people access the environment during the downtime event? Thomas said that his team decided to allow clinical care access through mobile devices on a secure operating system.

“Our clinicians sit in those hospitals; they do not sit in that data center. Our biggest issue is, great, I can activate an IRE, but if I can't get a clinician to access that environment and I have no network in that environment, how do I do it?” Thomas said.

LISTEN: What should healthcare leaders know about Microsoft Dragon Copilot?

He added that, in a few months, his team will validate their process as part of regular ransomware testing. It’s crucial that organizations understand that an IRE is not activated by IT but by the incident command center, so there are business decisions involved alongside technical ones.

“We are constantly developing our IRE. It is not a single deployment and government. We go back and we do iterations as we have the capability of services into that,” Thomas said, adding that it’s helpful to work with regular partners that will collaborate closely on the process.

Click the banner below to find out how to improve identity and access management in healthcare.

Greater Visibility Offers Better Insight Into a Complex Environment

During a separate session, Aaron Weismann, CISO at Pennsylvania-based Main Line Health, shared how his health system tests its environment of hundreds of thousands of connected devices with chaos engineering principles in mind.

“For our disaster preparedness, we wanted to intentionally force parts of our network down so we'd be able to test the resilience of our nurses, so we'd be able to test the resilience of our patient care, so we'd be able to test the resilience of our devices, either connecting to other parts of the network or reconnecting to the network as we brought it back up,” he said. “So, there were a lot of different use cases where we were able to effectively accomplish these tests across the board and really gauge our preparedness for a catastrophic attack.”

MORE COVERAGE: Read other news from HIMSS26.

Having tools that offered granular visibility to a complex Internet of Things ecosystem helped Weismann’s team understand baseline device behavior and predict what could happen in an outage, which was very effective for their disaster recovery planning.

He added that incorporating automation helped with scale for his small team of 25. Instead of losing some of them to a redundant task that could be automated, they could now turn their attention to more mission-critical projects.

Weismann also found that as his team members improved network hygiene, they could also identify devices that required maintenance, such as emergency phones that were not operating optimally.

“We have a better appreciation and understanding of how our system works and how staffing for our system works,” Weismann said.

Photography by Teta Alim