Skip to main content
Shaping Europe’s digital future
News article | Publication

ENISA: Procurement Guidelines for Cybersecurity in Hospitals

To facilitate the use of the Procurement Guidelines for Cybersecurity in Hospitals published in 2020, the European Union Agency for Cybersecurity (ENISA) releases an online tool today to support the healthcare sector in identifying procurement good practices to meet cybersecurity objectives when procuring products or services.

Procurement Guidelines and online tool: What for?

The online tool was developed as a complement to the procurement guidelines for cybersecurity in hospitals. Its purpose is:

  • To help healthcare organisations to quickly identify the guidelines that are most relevant to their procurement context such as assets procured or related threats;
  • To promote the importance of a good procurement process to ensure appropriate security measures.

To facilitate the dissemination of good practices across all healthcare organisations across the EU, a concise version of the procurement guidelines is now made available in the 22 official EU languages and the full version is available in English and Spanish.

The report on procurement guidelines has already generated a significant interest in the healthcare cybersecurity community.

Stakeholders in the sector, including members of the eHealth Security Experts Group suggested the idea of an interactive format of the guidelines making it possible to customise searches and help decision making through informed procurement.

The guidelines were translated in order to allow health organisations across Member States to directly access the content in their own language.