Cyber Resilience in Indian Hospitals: Report Highlights Key Progress & Gaps

The report stresses the need for hospitals to allocate 12–15% of their budgets to cybersecurity and digital infrastructure within the next two years to remain competitive.

A report titled “Cyber Resilience in Hospitals” by Deloitte India and the Data Security Council of India (DSCI) highlights significant strides and challenges in cybersecurity across Indian hospitals.

It reveals that 89% of hospitals have adopted Third-Party Risk Management (TPRM) systems, safeguarding sensitive patient data and managing cybersecurity threats in vendor networks.

However, only 10% of hospitals have fully implemented comprehensive data privacy programs. The Digital Personal Data Protection Act (DPDPA), introduced recently, is expected to encourage broader adoption in the coming years.

The report stresses the need for hospitals to allocate 12–15% of their budgets to cybersecurity and digital infrastructure within the next two years to remain competitive.

“In today’s rapidly evolving healthcare landscape, hospitals must navigate digital transformation with a strong focus on cybersecurity,” said Vikram Venkateswaran, Partner, Deloitte India. He further highlighted the importance of investing in cloud technologies and bridging skill gaps to enhance resilience.

Emerging Threats

The study found that while 90% of hospitals have crisis management plans to address cyber threats, only 60% conduct crisis simulation exercises, leaving many underprepared for potential attacks.

With the increasing adoption of AI-powered diagnostics, IoT devices, and remote monitoring technologies, hospitals face heightened risks of ransomware, data breaches, and insider threats.

The report also notes that 50% of Indian hospitals have obtained cyber insurance to mitigate financial risks linked to these threats.

“As India’s healthcare sector evolves with advancements such as AI and telemedicine, balancing rapid tech adoption with robust cybersecurity, resilience, and governance is vital for sustainable progress,” Vinayak Godse, CEO of DSCI, commented.

Future Priorities for Hospitals

India’s healthcare sector is seeing rapid growth, driven by technological innovations such as robotic surgeries and personalized medicine. Currently, 80% of hospitals use Electronic Medical Records (EMRs), and 70% have adopted zero-trust security frameworks to enhance cybersecurity.

Despite progress, challenges such as a shortage of skilled professionals and financial strain due to cloud migration remain.

The report suggests hospitals prioritize workforce training, system upgrades, and advanced cybersecurity protocols to address these gaps. Strengthening collaboration between healthcare and IT teams will also play a critical role in securing digital infrastructure and ensuring efficient patient care.