A new report says Nova Scotia doesn’t provide effective cybersecurity for its digital health networks, exposing the system to risk.
Provincial auditor general Kim Adair says there is a lack of accountability and a disconnect between the three government entities that oversee the system.
Adair says the lack of cohesion is problematic because of the province’s growing reliance on digital networks to store people’s personal and sensitive health information.
Get daily National news
Get the day’s top news, political, economic, and current affairs headlines, delivered to your inbox once a day.
The auditor says her office hired independent experts to run a number of cybersecurity tests, which revealed a “pervasive tolerance” for accepting risk and a failure to manage ongoing risks.
The report recommends the creation of an information technology governance framework to manage the digital health system, the completion of all outstanding cybersecurity assessments and regular mandatory cyber awareness training for all health network users.
Currently, the departments of health, cybersecurity and digital solutions, and Nova Scotia’s health authority share responsibility for cybersecurity.
This report by The Canadian Press was first published Oct. 22, 2024.
© 2024 The Canadian Press
