Healthcare — Layered Protect Surface

Defense-in-depth view of a typical Healthcare enterprise. Hover a component to surface its cross-layer dependencies, or run an attack path drawn from a CISA advisory relevant to this vertical.

HealthcareHIPAA Security Rule · state breach laws · HHS 405(d) HICP · FDA premarket/postmarket cybersecurity guidancepermalink →
OT - Volt Typhoon AA24-038A — This scenario reaches OT/ICS components (engineering workstations, historians, PLCs) that this sector’s enterprise inventory does not carry. See the energy / manufacturing maps for the renderable version.
External · Internet · Untrusted
Services
DNS & Domain
Identity (Okta/Entra)
CDN & Edge
Email Security
SIEM / XDR
Backup & DR
Secure Web Gateway
Privileged Access Mgmt
Assets
Laptops & Desktops
Mobile (iPhone/Android)
Network (Cisco/Meraki)
Firewalls (Palo Alto)
Cloud (AWS/Azure)
Servers (On-Prem)
Printers & IoT
USB & Removable Media
Infusion Pumps
Imaging Modalities (CT/MRI/X-ray)
Patient Monitors
Anesthesia Workstations
Applications
ERP (SAP/Oracle)
CRM (Salesforce)
Google Workspace
Custom Web Apps
DevOps (GitHub/CI)
HR Platform
Accounting (NetSuite)
Slack / Teams
VPN / Remote Access
EHR (Epic / Cerner)
PACS / Radiology
Data
Customer PII
Financial Records
IP & Trade Secrets
Employee HR Data
Cloud Object Storage
Databases (SQL/NoSQL)
Email & Messaging
Logs & Telemetry
Protected Health Information (PHI)