April 25, 2025
Protecting patient data isn’t just about keeping up with regulations; it’s about safeguarding lives and preserving trust. For healthcare organizations like City of Hope, cybersecurity is a mission-critical responsibility. A breach can impact patients’ well-being and the ability to focus on groundbreaking medical research.
Our recent webinar featuring Mike Ruehmkorff, Chief Information Security Officer at City of Hope, discussed how AI can positively impact healthcare security practices.
Key Highlights from the Webinar
1. Cybersecurity Challenges in Healthcare
Healthcare organizations face a perfect storm of challenges, including digital transformation, the rapid adoption of connected medical devices, and increasing regulatory requirements regarding patient privacy.
For City of Hope, the stakes are high.
Key challenges include:
- Securing IoT Medical Devices: Each device presents a potential entry point for attackers, from glucometers to advanced imaging machines.
- Protecting Intellectual Property: Safeguarding sensitive research data is as critical as patient privacy.
- Managing Complex Access Rights: With vast networks of staff, vendors, and contractors, keeping access levels secure and up-to-date is a constant battle.
Mike emphasized that cybersecurity priorities extend far beyond technical systems. Protecting patient trust and organizational reputation is paramount in an era when one breach can shatter decades of goodwill.
2. AI as a Game-Changer in Cybersecurity
AI-powered solutions have been regarded as the future of cybersecurity, but separating hype from reality is critical. Mike outlined where AI can play a part.
Vulnerability Management
With an overwhelming amount of data, AI/LLMs are the perfect fit to identify, prioritize, and disseminate remediation instructions. By leveraging natural language queries and generating actionable recommendations, AI tools can empower IT teams to focus on the most critical issues.
Identity and Access Management (IAM)
With all the access requests, AI can analyze and implement role-based access, ensuring staff only have access to the systems and data they need. This helps to reduce insider threats and prevent accidental breaches.
3. Building Trust Around AI Adoption
AI may empower teams, but Mike stressed the importance of positioning it as a collaborative tool, not replacing human expertise. “AI is here to do the heavy lifting while cybersecurity teams make the high-judgment calls that require expertise,” he explained.
Governance plays a significant role in ensuring AI solutions meet expectations. Strong decision-making frameworks and clear communication about AI’s role can help organizations avoid skepticism and foster stakeholder confidence.
4. Strategic Budget & Tool Management
With security budgets tightening across industries, Mike shared how he prioritizes tools and strategies that deliver measurable impact.
- Benchmarking: The team regularly assesses its cybersecurity posture against recognized standards, such as NIST, to identify areas for improvement while avoiding unnecessary spending.
- Venture Partnerships: Partnering with venture capital groups has allowed City of Hope to vet innovative AI tools without wasting resources on ineffective solutions.
- Tailored Solutions: Mike emphasized the value of engaging with vendors who understand the healthcare sector’s specific needs.
At Balbix, we’re reshaping how security teams operate. Our AI assistant BIX delivers actionable insights, dramatically simplifying risk identification and mitigation. With Balbix, CISOs and their teams can finally move beyond dashboards, spending less time searching for answers and more time proactively protecting their organizations.