{"id":180650,"date":"2026-01-22T11:46:00","date_gmt":"2026-01-22T16:46:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/22\/eli-lillys-security-head-on-how-ai-helps-hurts-cybersecurity\/"},"modified":"2026-01-22T12:05:11","modified_gmt":"2026-01-22T17:05:11","slug":"eli-lillys-security-head-on-how-ai-helps-hurts-cybersecurity","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/22\/eli-lillys-security-head-on-how-ai-helps-hurts-cybersecurity\/","title":{"rendered":"Eli Lilly\u2019s security head on how AI helps, hurts cybersecurity"},"content":{"rendered":"<p><a href=\"https:\/\/www.healthcare-brew.com\/stories\/2026\/01\/22\/eli-lilly-security-head-ai-helps-hurts-cybersecurity\">Eli Lilly\u2019s security head on how AI helps, hurts cybersecurity<\/a><\/p>\n<p><a href=\"https:\/\/www.healthcare-brew.com\/stories\/2026\/01\/22\/eli-lilly-security-head-ai-helps-hurts-cybersecurity\">https:\/\/www.healthcare-brew.com\/stories\/2026\/01\/22\/eli-lilly-security-head-ai-helps-hurts-cybersecurity<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-01-22 11:46:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.healthcare-brew.com\">www.healthcare-brew.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. Each week, we schedule our rounds with Healthcare Brew readers. Want to be featured in an upcoming edition? Click here to introduce yourself.There\u2019s an oft-repeated adage in healthcare right now: An AI model is only as good as the data it\u2019s trained on.This truth has turned patients\u2019 health information into a hot commodity. Healthcare organizations are increasingly using it to build AI-fueled drug discovery models, digital twins, and clinical trial emulations.Eli Lilly is one such company. The trillion-dollar biopharma not only has its own vast library of 500,000+ data points but is also collecting data from other biotech companies in exchange for allowing those companies to use its AI models.But as the collection and use of patient health information grows, so does its risk of compromise. Around 57 million patients\u2019 healthcare records were exposed in 2025, per a preliminary count by the HIPAA Journal.Alongside patients\u2019 personal information, healthcare giants also have to guard their intellectual property and trade secrets. It\u2019s not always easy, particularly when considering that many healthcare leaders have decades\u2019 or even a century\u2019s worth of files, sometimes stored on outdated legacy technology.So how do major healthcare innovators balance their ambition with caution and make sure their work is secure? Andrea Abell, chief information security officer (CISO) at Eli Lilly, sat down with Healthcare Brew at CES to discuss her role.This interview has been lightly edited for length and clarity.What is your day-to-day like in your job?One of the things I love about cybersecurity is I wouldn\u2019t say that I have a very normal day to day. We get to work across all of the aspects of Eli Lilly. I can go from one meeting where we are talking about drug discovery to another meeting talking about manufacturing, and then to another meeting where we\u2019re talking about distribution.We build in security by design for new things that we\u2019re trying to implement\u2026Legacy tech or tech debt, that\u2019s actually the harder part of the job. Because of the threats that we have today, we have to be really creative and figure out how to make sure that an attacker can\u2019t take advantage of technology that was never meant to withstand [modern threats].Navigate the healthcare industryHealthcare Brew covers pharmaceutical developments, health startups, the latest tech, and how it impacts hospitals and providers to keep administrators and providers informed.How do you use or view AI when it comes to cybersecurity?It\u2019s really important that we understand AI and that we use it because it will help us the same way it helps attackers.Think of the NCIS-type shows that you might like to watch. How they catch the bad guys is because they\u2019ve found some fingerprint. Well, in cybersecurity, it\u2019s very much like that, but we call them indicators of compromise. They could be IP addresses, or domain names, or they could be file names.The Lilly ecosystem becomes a haystack where we have to search for these digital fingerprints. We can use AI to do that on repeat very quickly\u2026much more quickly and efficiently than we could do with humans.Do you get the sense that healthcare organizations are prioritizing cybersecurity more now than in the past?It&#8217;s tough. It\u2019s a complex ecosystem. There\u2019s a heavy regulatory burden, and I think that makes it complicated.Security, initially, in some places, has taken a check-the-box approach, and I think that has allowed healthcare security to lag. But I think that\u2019s changing, and you now have a pretty big gap between the companies that have changed and the ones that haven\u2019t. And the ones that haven\u2019t, it\u2019s often not because they don\u2019t want to but because they\u2019re rural or community hospitals or they\u2019re small to medium businesses, and security is expensive.Unfortunately, a lot of those companies or hospitals are waiting for regulation to change. I think that\u2019s where companies like Lilly, Amazon Web Services, and Microsoft\u2014and agentic AI and some philosophical shifts like secure by default\u2014are going to make a huge difference.You may not be able to hire someone [to improve your cybersecurity], but you\u2019ll be able to use an agent to do it.<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Eli Lilly\u2019s security head on how AI helps, hurts cybersecurity https:\/\/www.healthcare-brew.com\/stories\/2026\/01\/22\/eli-lilly-security-head-ai-helps-hurts-cybersecurity Publish Date: 2026-01-22 11:46:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":180651,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.sanity.io\/images\/bl383u0v\/production\/8fe871abfaf7960b7d06933c9dee6aae5e1eced9-1500x1000.jpg?rect=0,106,1500,788&w=1200&h=630&q=70&fit=crop&auto=format","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24],"class_list":["post-180650","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/180650"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=180650"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/180650\/revisions"}],"predecessor-version":[{"id":180652,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/180650\/revisions\/180652"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/180651"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=180650"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=180650"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=180650"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}