Study Helps Drive Enterprise Cyber Resilience, Stronger AI Governance
“Health-ISAC is proud to co-sponsor the 2026 Healthcare Cybersecurity Benchmarking Study, which delivers unmatched visibility into the risks shaping the health sector’s cyber readiness,” said Errol Weiss, Chief Security Officer of Health-ISAC. “By benchmarking against recognized security practices like NIST CSF 2.0 and HICP, and integrating emerging frameworks such as the NIST AI RMF for stronger AI governance, the study delivers timely, actionable intelligence. These insights help members adapt to evolving threats, including those accelerated by AI, and strengthen their ability to detect, respond to, and recover from incidents that could disrupt patient care.”
To participate in the 2026 Benchmarking Study, contact: benchmarks@censinet.com.
“Since inception four years ago, the Benchmarking Study has activated a national discussion on healthcare cybersecurity and brought together over 250 healthcare organizations to help shape industry best practices,” said Ed Gaudet, CEO and Founder of Censinet. “This year’s study comes at a pivotal moment, as nation state-supported actors increasingly target the critical
functions that sustain patient care and as AI adoption rapidly accelerates, potentially beyond our ability to effectively govern its risks. The 2026 Benchmarking Study will help healthcare leaders strengthen resilience, close AI governance gaps, and ensure innovation advances without compromising patient safety.”
“Health-ISAC is proud to co-sponsor the 2026 Healthcare Cybersecurity Benchmarking Study, which delivers unmatched visibility into the risks shaping the health sector’s cyber readiness,” said Errol Weiss, Chief Security Officer of Health-ISAC. “By benchmarking against recognized security practices like NIST CSF 2.0 and HICP, and integrating emerging frameworks such as
the NIST AI RMF for stronger AI governance, the study delivers timely, actionable intelligence. These insights help members adapt to evolving threats, including those accelerated by AI, and strengthen their ability to detect, respond to, and recover from incidents that could disrupt patient care.”
Exclusive Benefits for 2026 Benchmarking Study Participants
Participation in the 2026 Benchmarking Study is free of charge and gives organizations access to enterprise assessments and peer comparisons to strengthen cybersecurity maturity and preparedness, optimize program cost and productivity, and ensure safe, secure AI adoption.
Participating organizations in the 2026 Benchmarking Study get no-cost access to:
● Enterprise assessments and peer benchmarks for:
○ NIST Cybersecurity Framework 2.0 (CSF 2.0)
○ NIST AI Risk Management Framework (AI RMF)
○ Organizational Metrics on cyber program ownership, cost, and productivity
○ HHS Healthcare & Public Health Cybersecurity Performance Goals (HPH CPGs)
○ 405(d) Health Industry Cybersecurity Practices (HICP 2023)
● Executive Summary and Deep Dive Reports, to be published in early 2026
● Board-ready dashboards and reporting to support cybersecurity investment planning
● Peer group comparisons across operational metrics such as ‘cybersecurity expense as a
percentage of IT budget’
Benchmarking results and peer comparisons are available immediately upon completion of the
assessments.
