{"id":186775,"date":"2026-02-12T12:37:00","date_gmt":"2026-02-12T17:37:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/12\/how-the-generative-ai-boom-changes-healthcare-cybersecurity\/"},"modified":"2026-02-12T12:45:09","modified_gmt":"2026-02-12T17:45:09","slug":"how-the-generative-ai-boom-changes-healthcare-cybersecurity","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/12\/how-the-generative-ai-boom-changes-healthcare-cybersecurity\/","title":{"rendered":"How the generative AI boom changes healthcare cybersecurity"},"content":{"rendered":"<p><a href=\"https:\/\/www.healthcaredive.com\/news\/generative-ai-cybersecurity-healthcare-taylor-lehmann-google-cloud\/811890\/\">How the generative AI boom changes healthcare cybersecurity<\/a><\/p>\n<p><a href=\"https:\/\/www.healthcaredive.com\/news\/generative-ai-cybersecurity-healthcare-taylor-lehmann-google-cloud\/811890\/\">https:\/\/www.healthcaredive.com\/news\/generative-ai-cybersecurity-healthcare-taylor-lehmann-google-cloud\/811890\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-12 12:37:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.healthcaredive.com\">www.healthcaredive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>Generative artificial intelligence has exploded in the healthcare sector in recent years, driven by hopes the technology could take on a variety of tasks \u2014 from clinical documentation to data analysis \u2014 and lessen the industry\u2019s long-standing workforce challenges.<br \/>\nAt the same time, healthcare organizations often struggle to manage cybersecurity, burdened by frequent cyberattack attempts as the sector adopts more internet-connected tools.<br \/>\nAI products could be another target for cybercriminals. Meanwhile, hackers can use their own AI to launch cyberattacks. That should create new work and security disciplines for healthcare cyber teams, said Taylor Lehmann, a director of the office of the chief information security officer at Google Cloud.<\/p>\n<p>Lehmann sat down with Healthcare Dive to discuss how the advent of generative AI tools will impact healthcare cybersecurity and what organizations need to do to prepare for an increasingly AI-augmented security workforce.\u00a0<\/p>\n<p>This interview has been edited for clarity and length.\u00a0<\/p>\n<p>HEALTHCARE DIVE: Would you say these generative AI tools are more ripe for attack than any other piece of tech hospitals use? Or is that just another vendor they have to consider when they&#8217;re thinking about cybersecurity?<\/p>\n<p>Taylor Lehmann, a director of the office of the chief information security officer at Google Cloud<br \/>\nPermission granted by Google Cloud<br \/>\n\u00a0<\/p>\n<p>TAYLOR LEHMANN:\u00a0This is where I am concerned about the future. Today we\u2019re talking with AI systems, tomorrow we\u2019re watching AI systems do stuff \u2014 like the agentic push we\u2019re still on the cusp of \u2014 so this answer might change a bit. But number one,\u00a0it\u2019s going to be very hard to detect when AI is wrong and whether that being wrong is due to it being manipulated by a nefarious actor.\u00a0<br \/>\nDetecting wrongness is already a challenge. We\u2019ve been working on this for years. No one\u2019s been able to completely eliminate hallucinations or inaccuracy. But I do think detecting more than just hallucinations, but functionality that has been introduced by a bad guy sitting in the middle to get a certain outcome \u2014 it\u2019s going to be really hard to detect and increasingly difficult to detect.\u00a0<br \/>\nSo organizations need to make sure that they have provenance for basically everything from the model being served to you, the technology that has been done with, all the way down to the provider of the model and the data they use to train it. That visibility is going to be critical.\u00a0<br \/>\nAt Google we use model cards. We use practices like cryptographic binary signing, where we can tell exactly where the code came from that is running that model. We can tell you exactly where the data came from that trained that model. We can trace every record that went into that model\u2019s training from birth to death. And organizations are going to need to be able to see that in order to manage those risks.<\/p>\n<p>You mentioned the importance of being able to tell what models are trained on and what data is flowing in, and how that could help you figure out if the tool has been infiltrated. How should health systems be thinking about implementing workforces now to deal with those concerns?<br \/>\nThere\u2019s definitely new security disciplines coming. This is actually some of the work that we\u2019re doing right now in the office of the CISO. Google is looking at some of these new roles and new capabilities, and then putting guidance together for folks on what to do.<br \/>\nThe first thing I would say is, there are ways and methods that are needed to secure AI systems out of the gate. We feel very strongly that any reasonable approach to securing AI and AI systems needs to involve having strong identity controls in place and making sure that we know who\u2019s using the model. We know what the model\u2019s identity is, we know what the user\u2019s identity is and we can differentiate between those two things. We also have radical transparency in everything the model does. Right or wrong, we can see it.<br \/>\nOne of the new big areas is this concept of AI \u201cred teaming.\u201d Organizations deploy a team of people that do nothing but try to make these things break \u2014 basically try to get them to produce harmful content, take actions that were not intended \u2014 to test the limits of the safeguards, as well as evaluate how well the models are trained, whether they\u2019re over- or under-fit for purpose.<br \/>\nI think you\u2019re starting to see AI governance becoming hugely important. It\u2019s always been important, but understanding the risks associated with AI \u2014 especially in regulated industries or in safety-critical use cases \u2014 requires a combination of technical skill as well as understanding of how AI works and is built, as well as the regulatory or the business context to determine what is an important risk.<br \/>\nHaving really robust AI governance and people with these right skills is kind of a difficult place today. Because right now, you\u2019ve got people who are great engineers, you\u2019ve got people who are great doctors. You don&#8217;t necessarily have both, with a risk hat on. So we\u2019re going to see the rise of industry-specific, even practice-specific, governance professionals.\u00a0<br \/>\nHackers are increasingly using AI to improve their intrusion attempts. How should health systems be thinking about the increased risks posed by cyber criminals now that they have access to AI?<br \/>\nNumber one is, we have to wrangle how organizations provision and manage identities, like the identities of humans, the identities of machines, the identities of agents.\u00a0<br \/>\nI do not think your average hospital really thinks about identity more than how to identify the people walking in the door and what their user ID and password are. Identity is going to be the piece of digital evidence or digital artifact that is going to tie everything together. Based on identity is where we will apply controls with appropriate context.<br \/>\nThe second is speed. AI systems move fast. They move faster than humans. Weaponized AI systems, especially those that have been trained to do very specific things, will move at lightning speed. We\u2019re not going to say in the future, \u201cHey, you have less than an hour to fix a ransomware-positive infection of a piece of code.\u201d You have seconds, if milliseconds, now. And if you can&#8217;t operate with that same speed to detect and eliminate, you\u2019re going to be in trouble.\u00a0<br \/>\nThe strategy I have is, look at your architecture, look at the systems, look at your applications. Look at how quickly you can deploy new controls. Look how quickly you can rebuild the system from scratch, look how quickly you can deploy a patch. Look how quickly you can detect an event and take action on it, and drive down the things and eliminate the things that stand in your way from doing that \u2014 whether it be from hours to minutes or minutes to seconds. But prioritize those things that help you deploy corrections and detect and respond to issues extremely quickly.\u00a0<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>How the generative AI boom changes healthcare cybersecurity https:\/\/www.healthcaredive.com\/news\/generative-ai-cybersecurity-healthcare-taylor-lehmann-google-cloud\/811890\/ Publish Date: 2026-02-12 12:37:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":186776,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/tOqPwLTyb_LMNE5tf52AiHIezDFl2URR0n9N3WlK8dQ\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMzQzMzQ5NTU4LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24],"class_list":["post-186775","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/186775"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=186775"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/186775\/revisions"}],"predecessor-version":[{"id":186777,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/186775\/revisions\/186777"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/186776"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=186775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=186775"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=186775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}