Cybersecurity Based on Zero Trust Applied to Local Hospital: A Case Study in Veracruz-Mexico
摘要
The widespread adoption of Internet-connected devices, accelerated by the COVID-19 pandemic, has significantly increased cybersecurity vulnerabilities. The healthcare sector is particularly affected, facing average data breach costs of $10.1 million annually. While digital transformation has enhanced patient care through electronic medical records and remote monitoring, it has also increased exposure to cyber threats. This study proposes a security design based on the Zero Trust architecture, specifically tailored to the needs of hospitals. A qualitative review of Zero Trust applications in healthcare is presented, along with an analysis of the security requirements within hospital networks. The theoretical framework covers Zero Trust principles, healthcare data protection regulations, and relevant case studies. A practical case involving Hospital Bienestar Coatzacoalcos in Mexico illustrates the real-world implementation of Zero Trust, addressing challenges such as user diversity, device heterogeneity, and the critical need to protect patient data. The findings highlight key benefits including enhanced data security, faster threat response, and improved compliance with regulations. These results support the investment of time and resources required for successful deployment and adoption of Zero Trust strategies in healthcare environments.