Hospitals and healthcare facilities are among the most sensitive critical entities. They must remain operational at all times, even during emergencies, as they provide life-saving services to patients and communities. Fire incidents, power failures or security breaches can put lives at immediate risk and disrupt essential medical services. The CER framework reinforces the need for resilient healthcare infrastructure supported by reliable fire detection and alarm systems, evacuation and smoke control solutions, access control, and secure monitoring of sensitive areas and medical assets.
EU actions & requirements
- Health providers, pharmaceutical supply, and medical devices part of critical sectors under both NIS2 and CER.
- Cybersecurity risk management and reporting obligations for health systems and digital health services under NIS2.
Key focus
- Ensuring uninterrupted access to health services and secure medical data.
- Mitigation of risks from cyber threats and broader disruptive events like public health emergencies.