Cybersecurity & healthcare
ISSUES & STRATEGIESCybersecurity at the heart of the digital transformation of healthcare
The digital transformation of the healthcare sector has been accompanied by a proliferation of threats: paralysed hospitals, data leaks, ransom demands, etc. Healthcare institutions have thus become prime targets, making it essential to place cybersecurity at the heart of IT strategies.
At Evolucare, the commitment is clear: to build security into the design of solutions (strong authentication, encryption, access management) and to anticipate regulatory requirements (french HDS, NIS 2).
“Securing healthcare systems is a top priority. At Evolucare, we are committed to providing robust and innovative solutions to protect sensitive data and ensure continuity of care. ”
Lauranne PEYRON,
CISO and DPO, Evolucare
The CaRE programme (Cyber Acceleration and Resilience of Institutions)
Evolucare, committed to strengthening business continuity in healthcare facilities
Evolucare is strengthening its commitment to the resilience and business continuity of healthcare institutions as part of the CaRE (Cyber Acceleration and Resilience of Institutions) programme.
Through dedicated strategic support and its partner solutions DUPLICATA and BEEMO, Evolucare helps institutions protect their data and ensure rapid recovery in the event of an incident.
This commitment illustrates Evolucare’s desire to provide long-term support for security, continuity of care and digital trust at the heart of the healthcare sector.
Standards, authentication and risk management: the foundations of sustainable security
Third-party security (suppliers, service providers): a critical link
In a highly interconnected healthcare environment, the intangible supply chain (suppliers, service providers, partners) introduces supply chain risks that must be controlled.
Standards such as ISO 27001, the french HDS framework, the NIS 2 directive and even the Cyber Resilience Act require suppliers to be contracted, assessed and monitored, without delegating responsibility for security.
Strong authentication (MFA) and regulatory change
Multi-factor authentication (MFA) will become mandatory in France for accessing health data from 1 January 2026.
This regulatory change cannot be viewed as a simple plug-in: it is a structural IT project involving governance, identity protocols (FIDO2, CPS, e-CPS) and the overhaul of authorisations.
ISO 27001 and the NIS 2 Directive: towards early compliance
The European NIS 2 Directive extends the scope of application and strengthens security requirements for many sectors, with obligations to comply with this set of rules.
Embarking on an ISO 27001 process (whether certification or not) is an effective way to anticipate NIS 2: the principles (governance, risk management, continuity, auditing) are very similar, and aligning the standards facilitates convergence.
Strengthen your cybersecurity
We have published a series of expert articles covering various aspects of cybersecurity. These articles are designed to provide you with practical information and advice on how to improve the security of your systems.
Quality is also safety
There can be no cybersecurity without quality: we structure our processes using a Quality Management System that complies with ISO 9001 / ISO 13485. Combined with “security by design”, intrusion testing and continuous risk management, this approach guarantees the integrity, confidentiality and availability of medical software.
All the latest news on cybersecurity
Evolucare and Les Blouses Roses: working together for cybersecurity in non-profit sector
As part of its Pact4all 2025 commitment, Evolucare continues to support the Les Blouses Roses association through a unique skills sponsorship programme dedicated to cybersecurity for associations. This October, a third webinar concluded this awareness-raising ...
Cybersecurity and trusted third parties
Lieu : Marseille - Palais du Pharo
- Dates : 1 et 2 octobre 2025
On 1 October in Marseille, Lauranne Peyron, RSSI DPO of the Evolucare Group, led a strategic workshop during the Journées Numih France event.
MFA, DMP, Ségur VA2: things are heating up!
Healthcare establishments can no longer put off the digital shift Summer isn't even over yet, and the new school year is already shaping up to be a tense one for educational institutions. The focus is on the widespread adoption of strong authentication in ...
Cybersecurity and health: Evolucare gets involved
Evolucare, a committed partner for sustainable data protection In an increasingly digitalised healthcare sector, cyber threats are on the rise. For healthcare establishments, guaranteeing the security of patient data while complying with new regulatory ...
Digital security: how do you choose the right password?
Advice from Lauranne Peyron, CISO at Evolucare To mark World Password Day, we asked Lauranne Peyron, Head of Information Systems Security at Evolucare, to share a few key recommendations for strengthening day-to-day cyber security. 🔐 Why is authentication ...
Synergy with CERT-ASINHPA
Click on the logos to visit the dedicated websites Evolucare and Cert-Asinhpa: a synergy to strengthen digital security in healthcare In a context where cyber attacks targeting healthcare establishments are on the increase, the security of information ...
Data Protection Day
Evolucare Technologies' commitment to data security and protection is based on compliance with the regulations, standards and best practices that govern the conduct of its business. This commitment, which is rooted in our professional obligations and ...
Strengthen your healthcare establishment’s cyber security with Evolucare
Cyber security in healthcare facilities is more crucial than ever. With cyber attacks on the increase, it is essential to secure hospital information systems. At Evolucare, we are committed to supporting you in this vital mission. Over the past few months, we ...
Cybersecurity, episode 3: deploying secure identification systems
This article is the third in a series on cybersecurity on the Evolucare website. The deployment project Deploying substantial means of electronic identification and strong authentication is a facility project. Indeed, although the french "Ségur Numérique" ...
Cybersecurity, episode 2: healthcare identification, reference systems
This article is the second in a series on cybersecurity on the Evolucare website. Identification requirements and standards for healthcare systems In a context where cyberattacks are increasing exponentially, and where the healthcare sector, in the midst of ...
Cybersecurity, episode 1: identification, authentication, authorization!
This article is the first in a series on cybersecurity to be discovered on the Evolucare website. Identification, authentication, authorization: what are they? How do they work? As users of computer software, we are increasingly required to log on, either ...
Cybersecurity in e-health: Evolucare’s commitment
E-health cybersecurity: Evolucare's ongoing commitment to excellence At the turn of the new millennium, "cybersecurity" was mostly synonymous with hackers hiding in dark corners of the digital world. At that time, Evolucare was already a force in motion, ...
EHR and management of access rights to medical records
The issue of the authorization policy for access to a patient’s medical record is an extremely broad topic. There are multiple solutions and several factors need to be taken into account due to the complexity of organizations and the plethora of professions ...