H-ISAC is a trusted community of critical infrastructure owners and operators within the Health Care and Public Health sector (HPH). The community is primarily focused on sharing timely, actionable and relevant information with each other including intelligence on threats, incidents and vulnerabilities that can include data such as indicators of compromise, tactics, techniques and procedures (TTPs) of threat actors, advice and best practices, mitigation strategies and other valuable material. Sharing can occur via machine to machine or human to human. H-ISAC also fosters the building of relationships and networking through a number of educational events in order to facilitate trust. Working groups and committees focus on topics and activities of importance to the sector and services such as Shared Services offer enhanced services to leverage the H-ISAC community for the benefit of all.
The mission of H-ISAC is to empower trusted relationships in the healthcare industry to prevent, detect, and respond to cybersecurity and physical security events so that members can focus on improving health and saving lives.
H-ISAC collaborates with CERTS, health CERTS, other ISACs, government agencies and law enforcement across the globe. The National Council of ISAC’s provides framework for cross sector interaction amongst ISAC’s as well as private and public sector security entities. (www.natlisacs.org)
H-ISAC is constantly engaged with external partners such as government, law enforcement, the vendor community, other ISACs and HPH associations such as HIMSS, MDISS, EHNAC and CHIME to facilitate situational awareness and inform risk-based decision making to protect the HPH and other critical infrastructure sectors. H-ISAC works with many partners and Cyber Emergency Response Teams (CERTS) globally.