CISA announces initiative to bolster critical infrastructure against nation-state cyberattacks

May 06, 2026 - 03:28 PM
What Boards Need to Know About Cybersecurity

The Cybersecurity and Infrastructure Security Agency has launched a new initiative for critical infrastructure to defend against cyberattacks through proactive isolation and recovery planning. The initiative, called “CI Fortify,” seeks to ensure that organizations can sustain essential operations following incidents during geopolitical conflicts. CISA said that isolation includes measures such as proactively disconnecting from third-party and business networks to prevent cyber impacts to operational technology, which could allow essential services to continue during emergencies rather than completely shutting down. Recovery measures include documenting systems, backing up critical files, and practicing the replacement of systems or transitioning to manual systems if isolation fails and components are rendered inoperable. 
 
“This initiative provides excellent and timely guidance for hospitals and health systems to prepare them to continue delivering essential services in the event of a destructive nation-state cyberattack or ransomware attack,” said John Riggi, AHA national advisor for cybersecurity and risk. “Cyber resilience is essential to maintain patient care and safety during any incident which disrupts access to health care technology. Coincidentally, this follows the AHA and Joint Commission’s new Cyber Resilience Readiness program, which also helps hospitals and health systems with sustaining clinical continuity during extended cyber-related technology outages." 
 
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
Webinar to explore AI use in cybersecurity, health care technology 
John Riggi, AHA national advisor for cybersecurity and risk, will moderate a webinar May 5 at 1 p.m. ET that will explore how bad actors are leveraging…
Headline
AHA, Joint Commission announce cybersecurity readiness effort 
The AHA and Joint Commission May 4 announced the launch of the Cyber Resilience Readiness program, an initiative to help hospitals and health systems assess…
Headline
Agencies issue guidance on adopting agentic AI systems
The Cybersecurity and Infrastructure Security Agency, National Security Agency and international partners have released guidance on adopting agentic artificial…
Headline
Advisory details shifting tactics of Chinese cyber actors using covert networks for malicious activity
A joint advisory released April 23 from U.S. and international cybersecurity agencies, including the Cybersecurity and Infrastructure Security Agency, FBI,…
Headline
FBI Co-deputy Director Andrew Bailey discusses current cyber and physical threats, rise of AI
FBI Co-deputy Director Andrew Bailey discussed a rise in cyber and physical threats impacting health care. He discussed health care as the top critical…
Headline
FBI: Health care was top target for ransomware, other cyberthreats in 2025 
Health care and public health was the top sector targeted for cyberthreats in 2025, according to the FBI’s latest annual report on internet crimes. There were…