# AAPM working group on cybersecurity report 438: A white paper on cybersecurity management for business continuity in radiology and radiation therapy

**Authors:** R. Alfredo Siochi, Peter Balter, Samantha Hedrick, Jonathan Howe, Tianjun Ma, Emilie Soisson, Joshua Yung, Bruce Curran

PMC · DOI: 10.1002/acm2.70358 · Journal of Applied Clinical Medical Physics · 2025-11-23

## TL;DR

This paper outlines how clinics can manage cybersecurity to ensure continuous care in radiology and radiation therapy.

## Contribution

It introduces a framework for business continuity planning involving medical physicists and IT staff.

## Key findings

- Cyberattacks disrupt clinical services, necessitating cyber-resilience planning.
- Business continuity plans should involve multiple stakeholders and address patient safety.
- Policies and procedures are crucial for maintaining care continuity during cyber incidents.

## Abstract

A growing number of clinics have experienced disruptions of clinical services due to cyberattacks. To provide continuity of care, medical physicists should work with Information Technology (IT) staff to develop a business continuity plan. Such planning requires the participation of many stakeholders and should include the development of policies and procedures that not only make the clinic more cyber‐resilient but also address patient safety and ethics concerns. This report discusses the business continuity planning considerations for radiology and radiation oncology.

## Full-text entities

- **Species:** Homo sapiens (human, species) [taxon 9606]

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/PMC12641095/full.md

## Figures

1 figure with captions in the complete paper: https://tomesphere.com/paper/PMC12641095/full.md

## References

40 references — full list in the complete paper: https://tomesphere.com/paper/PMC12641095/full.md

---
Source: https://tomesphere.com/paper/PMC12641095