PANACEA

Brief description

PANACEA has delivered an integrated solution for cybersecurity in healthcare to help build resilience to the growing attack surface. The approach is both holistic, covering people, processes and technology, and customisable, with tools for an automatic, dynamic and multi-dimensional risk assessment, secure by design deployment of medical devices and systems, easy and manageable information sharing, user-friendly clinical staff identity management, security behaviour assessment with ways to improve it through nudges alongside universally understandable education video clips to encourage correct behaviour and implement distributed governance.
The main driver behind PANACEA is the safety and wellbeing of patients as an essential part of a high-quality healthcare service, with regulatory compliance top of mind.
 

Our Role

• monitoring cybersecurity trends in healthcare, with a view to keeping healthcare organisations aware of major risks;
• analysing  regulations and guidelines, e.g. NIS Directive; GDPR; MDR; MDCG-16-Guidance on Cybersecurity for medical devices; ENISA Procurement Guidelines for Cybersecurity in Hospitals;
• positioning PANACEA in the healthcare cybersecurity market with a competitor analysis and unique value proposition definition;
• implementing a 360° communication and marketing package with branded materials, key messages, pay-per-click campaigns and a UX research-based website;
• creating a web-based knowledge hub, including a Lookout Watch on EU and international policy, related research and the impacts of COVID-19;
• driving engagement with healthcare organisations and supporting interactions with external advisors.

• produced a set of IPR guidelines governing joint exploitation of the PANACEA Toolkit;
• supported the Exploitation Task Force in setting up the PANACEA Cybersecurity Healthcare Advisory Service.

The final event (February 2022) is co-hosted with peer projects, CUREX and SPHINX, showcasing complementary results and building on long-lasting impacts of joint dissemination. 

Impact

PANACEA has proven its usability and added value in three European healthcare organisations: Gemelli University Hospital, Rome, hospitals in the 7th Healthcare Region of Crete and within the Irish Health Service Executive , alongside four medical device/system developers.

The PANACEA white paper, Lessons learnt from PANACEA on the cyber-protection of hospitals and care centres, captures the impacts of a recent ransomware attack on HSE, highlighting the potential of PANACEA in strengthening cybersecurity capabilities in such scenarios.

Results

• A video suite on the PANACEA Toolkit and Solutions on YouTube: 

  • Cybersecurity Education and Learning Tool
  • Secure Behaviour Nudging Tool
  • Security governance and decision support tools
  • Dynamic Risk Management Platform
  • Secure Information Sharing
  • Security by Design - support design support platform
  • Security by design - compliance support tool
  • Identity Management Platform - human to machine

   

• A consolidated healthcare and policy community spanning 1000+ connections on LinkedIn and 360+ on Twitter.
• Hosting of highly interactive end-user and standardisation workshops.
• Visibility at EU and international conferences on cybersecurity, from both a technical and healthcare perspective.

Funding

PANACEA has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 826293