H-ISAC is a trusted community of critical infrastructure owners and operators within the Health Care and Public Health sector (HPH). The community is primarily focused on sharing timely, actionable and relevant information with each other including intelligence on threats, incidents and vulnerabilities that can include data such as indicators of compromise, tactics, techniques and procedures (TTPs) of threat actors, advice and best practices, mitigation strategies and other valuable material. Sharing can occur via machine to machine or human to human. H-ISAC also fosters the building of relationships and networking through a number of educational events in order to facilitate trust. Working groups and committees focus on topics and activities of importance to the sector and services such as Shared Services offer enhanced services to leverage the H-ISAC community for the benefit of all.
H-ISAC’s mission is to enable and preserve the public trust by advancing the global health sector’s cyber and physical security protection and resilience as well as enabling the ability to prepare for and respond to cyber and physical threats and vulnerabilities.
H-ISAC collaborates with CERTS, health CERTS, other ISACs, government agencies and law enforcement across the globe. The National Council of ISAC’s provides framework for cross sector interaction amongst ISAC’s as well as private and public sector security entities. (www.nationalisacs.org)
H-ISAC is constantly engaged with external partners such as government, law enforcement, the vendor community, other ISACs and HPH associations such as HIMSS, MDISS, EHNAC and CHIME to facilitate situational awareness and inform risk-based decision making to protect the HPH and other critical infrastructure sectors. H-ISAC works with many partners and Cyber Emergency Response Teams (CERTS) globally.