{"id":3872,"date":"2025-11-25T13:41:27","date_gmt":"2025-11-25T13:41:27","guid":{"rendered":"https:\/\/phishia.fr\/?p=3872"},"modified":"2025-12-11T01:07:53","modified_gmt":"2025-12-11T01:07:53","slug":"protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations","status":"publish","type":"post","link":"https:\/\/phishia.fr\/en\/blog\/compliance-management\/protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations\/","title":{"rendered":"Protecting workstations and infrastructure: a vital challenge for hospitals and healthcare associations"},"content":{"rendered":"
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In a hospital or healthcare association, everything now depends on the information system: patient records, admissions, pharmacy, imaging, payroll, team coordination...<\/p>

When ransomware encrypts servers or a simple workstation is used as an entry point for an attacker,\u00a0continuity of care is at stake<\/strong>.<\/p>

That's why\u00a0workstations<\/strong>\u00a0(PCs, clinical workstations, laptops) and\u00a0\u201cthe \u201dmachines\" that run them<\/strong>\u00a0(servers, network, storage) has become a strategic issue, not just an IT one.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

1. Why substations and infrastructures are at the heart of risk<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Almost all recent attacks in the healthcare sector follow the same pattern:<\/p>\n

A\u00a0user station<\/strong>\u00a0is compromised (mail bomb, website bomb, USB key).<\/p>\n

The attacker recovers\u00a0identifiers<\/strong>, is on the rise, reaching the\u2019directory<\/strong>\u00a0and servers.<\/p>\n

It encrypts or steals data, shuts down critical applications and blocks hospitals.<\/p>\n

In other words:<\/p>\n

    \n
  • the\u00a0workstation<\/strong>\u00a0is the front door,<\/li>\n
  • l\u2019infrastructure<\/strong>\u00a0is the final target.<\/li>\n<\/ul>\n

    Strengthening these two levels means reducing the risk of mass blockages in a very tangible way.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

    \n\t\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t\t

    2. The right reflexes for safe workstations<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
    \n\t\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t\t\t\t\t\t

    Here, the idea is to build a a simple, homogeneous and controllable base<\/strong> for workstations.<\/p>\n

    Homogenous, controlled workstations<\/b><\/h5>\n

    We define a few job profiles<\/strong> (nursing, administration, management...) who start from common images, with the same basic settings.
    We take this opportunity to remove unnecessary software<\/strong> which increase the attack surface and complicate management.<\/p>\n

    The more similar the positions, the easier it is to manage, correct and monitor them<\/strong>.<\/p>\n

    Limited rights to limit damage<\/b><\/h5>\n

    Users stay on standard accounts<\/strong>, without administrative rights on their workstations.
    The technical teams use separate admin accounts<\/strong>, only when necessary.<\/p>\n

    Thus, if a user account is stolen, the attacker cannot take complete control of the station in just a few clicks<\/strong>.<\/p>\n

    Protect and detect on every workstation<\/b><\/h5>\n

    Each station has a centrally managed antimalware<\/strong>.
    When possible, we add a more advanced brick (EDR\/XDR type) that monitors machine behavior and sends alerts in the event of suspicious activity (massive encryption, unusual execution, etc.).<\/p>\n

    In practice, it's a \u201calarm system\u201d for each station<\/strong>.<\/p>\n

    Keeping workstations up to date<\/b><\/h5>\n

    We set up a regular updating process<\/strong> for the system and the main software :<\/p>\n

      \n
    • \n

      rapid tests on a small perimeter,<\/p>\n<\/li>\n

    • \n

      then rolled out to the rest of the fleet.<\/p>\n<\/li>\n<\/ul>\n

      It's hardly visible to users, but it's one of the most important the most effective levers<\/strong> to close doors already known to attackers.<\/p>\n

      Protecting mobiles and data<\/b><\/h5>\n

      All laptops should have their own encrypted disk<\/strong>.
      In the event of loss or theft, this prevents a third party from directly retrieving patient data from the disk.<\/p>\n

      Training and coaching users<\/b><\/h5>\n

      Finally, the technical base is not enough without the right reflexes on the human side.
      A short, job-specific awareness-raising sessions<\/strong> (nurses, secretaries, managers, etc.) and simulated mail bombs<\/strong> to anchor the right reactions: don't click, alert, pass on to support.<\/p>\n

      Together, they form a workstation base<\/strong> both realistic for the field... and solid in the face of the most common attacks.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

      \n\t\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t\t

      3. The right reflexes for securing infrastructure (servers, network, etc.)<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
      \n\t\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t\t\t\t\t\t

      On the machine side, the aim is twofold:\u00a0making compromise more difficult<\/strong>\u00a0and\u00a0limit propagation<\/strong>\u00a0if something goes wrong.<\/p>\n

      Active Directory expertise<\/strong><\/h5>\n
        \n
      • Separate administration accounts from \u201cday-to-day\u201d accounts.<\/li>\n
      • Limit the number of people with very high entitlements.<\/li>\n
      • Monitor sensitive operations (adding to admin groups, modifying policies, etc.).<\/li>\n<\/ul>\n

        When the directory is compromised, everything else is within the attacker's reach: it deserves special attention.<\/p>\n

        Segmented network<\/strong><\/h5>\n
          \n
        • Separate networks: users, servers, biomedical equipment, guests, etc.<\/li>\n
        • Instead of connecting everything to everything, authorize only the flows you need.<\/li>\n<\/ul>\n

          The idea: if a workstation is infected, it should not be able to reach all critical servers in a matter of seconds.<\/p>\n

          Hardened and monitored servers<\/strong><\/h5>\n
            \n
          • Apply consistent security settings on all servers (unnecessary services turned off, logs enabled, access filtered).<\/li>\n
          • Keep systems and technical components up to date.<\/li>\n
          • Centralize\u00a0newspapers<\/strong>\u00a0(logs) to identify abnormal activity.<\/li>\n<\/ul>\n
            Reliable, isolated backups<\/strong><\/h5>\n
              \n
            • Backups\u00a0tested<\/strong>\u00a0regularly (to check that you really know how to restore).<\/li>\n
            • A portion of the backups are stored\u00a0isolated<\/strong>\u00a0from the network, so that ransomware doesn't encrypt them too.<\/li>\n
            • Clear prioritization: which systems to restore first to restart clinical activity.<\/li>\n<\/ul>\n
              Supervision and reaction<\/strong><\/h5>\n
                \n
              • Gather logs from workstations, servers, firewalls, etc. in one place.<\/li>\n
              • Use a supervision center (internal or external) to analyze alerts.<\/li>\n
              • Documenting\u00a0response procedures<\/strong>\u00a0These include isolating a substation, cutting off a network segment, switching to downgraded mode and informing the authorities.<\/li>\n<\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
                \n\t\t\t\t\t
                \n\t\t\t\t
                \n\t\t\t\t
                \n\t\t\t\t\t

                4. How Phishia helps hospitals and associations in concrete terms<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
                \n\t\t\t\t\t
                \n\t\t\t\t
                \n\t\t\t\t
                \n\t\t\t\t\t\t\t\t\t

                Phishia acts as\u00a0partner in the field<\/strong>\u00a0to transform these principles into operational reality:<\/p>\n

                  \n
                • Targeted diagnosis<\/strong>\u00a0mapping of critical workstations, servers and workflows, and analysis of the most significant weaknesses.<\/li>\n
                • Defining a realistic base<\/strong>\u00a0: workstation profiles, rights adjustment, update policy, simple but effective network segmentation.<\/li>\n
                • Implementation support<\/strong>\u00a0Support for in-house teams and service providers to deploy measures without disrupting care.<\/li>\n
                • Awareness-raising and exercises<\/strong>\u00a0These include e-mail attack simulation campaigns, crisis management exercises, and updates to BCP\/ERP plans to integrate these protections.<\/li>\n<\/ul>\n
                  \u00a0<\/div>\n

                  The aim is not to sell you yet another layer of technology, but to\u00a0build coherent, usable protection<\/strong>\u00a0with your means.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

                  \n\t\t\t\t\t
                  \n\t\t\t\t
                  \n\t\t\t\t
                  \n\t\t\t\t\t

                  5. What about your jobs and your infra?<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
                  \n\t\t\t\t\t
                  \n\t\t\t\t
                  \n\t\t\t\t
                  \n\t\t\t\t\t\t\t\t\t

                  Do you manage a hospital, group or healthcare association and feel that your workstations or infrastructure are vulnerable?
                  Let's discuss it: in just a few discussions, we can identify your priorities and build a customized action plan.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"

                  In a hospital or healthcare association, everything now depends on the information system: patient records, admissions, pharmacy, imaging, payroll, team coordination... When ransomware encrypts servers or a simple workstation is used as an entry point by an attacker, continuity of care is at stake. This is why [...]<\/p>","protected":false},"author":3,"featured_media":3895,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[22],"tags":[28],"class_list":["post-3872","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-pilotage-conformite","tag-sante"],"acf":[],"yoast_head":"\nProt\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9 - Phishia<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/phishia.fr\/en\/blog\/compliance-management\/protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9 - Phishia\" \/>\n<meta property=\"og:description\" content=\"Dans un h\u00f4pital ou une association de sant\u00e9, tout d\u00e9pend d\u00e9sormais du syst\u00e8me d\u2019information : dossier patient, admissions, pharmacie, imagerie, paie, coordination des \u00e9quipes\u2026 Quand un ran\u00e7ongiciel chiffre les serveurs ou qu\u2019un simple poste de travail sert de porte d\u2019entr\u00e9e \u00e0 un attaquant,\u00a0c\u2019est la continuit\u00e9 des soins qui est en jeu. C\u2019est pour \u00e7a que […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/phishia.fr\/en\/blog\/compliance-management\/protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations\/\" \/>\n<meta property=\"og:site_name\" content=\"Phishia\" \/>\n<meta property=\"article:published_time\" content=\"2025-11-25T13:41:27+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-11T01:07:53+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures-1024x576.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"576\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/\"},\"author\":{\"name\":\"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/#\\\/schema\\\/person\\\/ab1f38ad06f750da69863e8f06e86528\"},\"headline\":\"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9\",\"datePublished\":\"2025-11-25T13:41:27+00:00\",\"dateModified\":\"2025-12-11T01:07:53+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/\"},\"wordCount\":1144,\"publisher\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/11\\\/Bannieres-YouTube-Protection-des-infrastructures.png\",\"keywords\":[\"Sant\u00e9\"],\"articleSection\":[\"Pilotage et conformit\u00e9\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/\",\"url\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/\",\"name\":\"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9 - Phishia\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/11\\\/Bannieres-YouTube-Protection-des-infrastructures.png\",\"datePublished\":\"2025-11-25T13:41:27+00:00\",\"dateModified\":\"2025-12-11T01:07:53+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#primaryimage\",\"url\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/11\\\/Bannieres-YouTube-Protection-des-infrastructures.png\",\"contentUrl\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/11\\\/Bannieres-YouTube-Protection-des-infrastructures.png\",\"width\":2560,\"height\":1440},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/pilotage-conformite\\\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/phishia.fr\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Pilotage et conformit\u00e9\",\"item\":\"https:\\\/\\\/phishia.fr\\\/blog\\\/category\\\/pilotage-conformite\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/#website\",\"url\":\"https:\\\/\\\/phishia.fr\\\/\",\"name\":\"Phishia\",\"description\":\"Cabinet de Conseil IT, Cybers\u00e9curit\u00e9, Durabilit\u00e9\",\"publisher\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/phishia.fr\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/#organization\",\"name\":\"Phishia\",\"url\":\"https:\\\/\\\/phishia.fr\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/01\\\/Logotype.png\",\"contentUrl\":\"https:\\\/\\\/phishia.fr\\\/wp-content\\\/uploads\\\/2025\\\/01\\\/Logotype.png\",\"width\":512,\"height\":128,\"caption\":\"Phishia\"},\"image\":{\"@id\":\"https:\\\/\\\/phishia.fr\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/phishia\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/phishia.fr\\\/#\\\/schema\\\/person\\\/ab1f38ad06f750da69863e8f06e86528\",\"name\":\"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Protecting workstations and infrastructure: a vital challenge for hospitals and healthcare associations - Phishia","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/phishia.fr\/en\/blog\/compliance-management\/protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations\/","og_locale":"en_US","og_type":"article","og_title":"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9 - Phishia","og_description":"Dans un h\u00f4pital ou une association de sant\u00e9, tout d\u00e9pend d\u00e9sormais du syst\u00e8me d\u2019information : dossier patient, admissions, pharmacie, imagerie, paie, coordination des \u00e9quipes\u2026 Quand un ran\u00e7ongiciel chiffre les serveurs ou qu\u2019un simple poste de travail sert de porte d\u2019entr\u00e9e \u00e0 un attaquant,\u00a0c\u2019est la continuit\u00e9 des soins qui est en jeu. C\u2019est pour \u00e7a que […]","og_url":"https:\/\/phishia.fr\/en\/blog\/compliance-management\/protecting-workstations-and-infrastructure-a-vital-challenge-for-hospitals-and-healthcare-associations\/","og_site_name":"Phishia","article_published_time":"2025-11-25T13:41:27+00:00","article_modified_time":"2025-12-11T01:07:53+00:00","og_image":[{"width":1024,"height":576,"url":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures-1024x576.png","type":"image\/png"}],"author":"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#article","isPartOf":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/"},"author":{"name":"Enzo Debosque, consultant junior en CyberS\u00e9curit\u00e9","@id":"https:\/\/phishia.fr\/#\/schema\/person\/ab1f38ad06f750da69863e8f06e86528"},"headline":"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9","datePublished":"2025-11-25T13:41:27+00:00","dateModified":"2025-12-11T01:07:53+00:00","mainEntityOfPage":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/"},"wordCount":1144,"publisher":{"@id":"https:\/\/phishia.fr\/#organization"},"image":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#primaryimage"},"thumbnailUrl":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures.png","keywords":["Sant\u00e9"],"articleSection":["Pilotage et conformit\u00e9"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/","url":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/","name":"Protecting workstations and infrastructure: a vital challenge for hospitals and healthcare associations - Phishia","isPartOf":{"@id":"https:\/\/phishia.fr\/#website"},"primaryImageOfPage":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#primaryimage"},"image":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#primaryimage"},"thumbnailUrl":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures.png","datePublished":"2025-11-25T13:41:27+00:00","dateModified":"2025-12-11T01:07:53+00:00","breadcrumb":{"@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#primaryimage","url":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures.png","contentUrl":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/11\/Bannieres-YouTube-Protection-des-infrastructures.png","width":2560,"height":1440},{"@type":"BreadcrumbList","@id":"https:\/\/phishia.fr\/blog\/pilotage-conformite\/proteger-les-postes-de-travail-et-linfrastructure-un-enjeu-vital-pour-les-hopitaux-et-associations-de-sante\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/phishia.fr\/"},{"@type":"ListItem","position":2,"name":"Pilotage et conformit\u00e9","item":"https:\/\/phishia.fr\/blog\/category\/pilotage-conformite\/"},{"@type":"ListItem","position":3,"name":"Prot\u00e9ger les postes de travail et l\u2019infrastructure : un enjeu vital pour les h\u00f4pitaux et associations de sant\u00e9"}]},{"@type":"WebSite","@id":"https:\/\/phishia.fr\/#website","url":"https:\/\/phishia.fr\/","name":"Phishia","description":"IT Consulting, Cybersecurity, Sustainability","publisher":{"@id":"https:\/\/phishia.fr\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/phishia.fr\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/phishia.fr\/#organization","name":"Phishia","url":"https:\/\/phishia.fr\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/phishia.fr\/#\/schema\/logo\/image\/","url":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/01\/Logotype.png","contentUrl":"https:\/\/phishia.fr\/wp-content\/uploads\/2025\/01\/Logotype.png","width":512,"height":128,"caption":"Phishia"},"image":{"@id":"https:\/\/phishia.fr\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/phishia\/"]},{"@type":"Person","@id":"https:\/\/phishia.fr\/#\/schema\/person\/ab1f38ad06f750da69863e8f06e86528","name":"Enzo Debosque, Junior CyberSecurity Consultant"}]}},"_links":{"self":[{"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/posts\/3872","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/comments?post=3872"}],"version-history":[{"count":8,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/posts\/3872\/revisions"}],"predecessor-version":[{"id":3982,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/posts\/3872\/revisions\/3982"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/media\/3895"}],"wp:attachment":[{"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/media?parent=3872"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/categories?post=3872"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/phishia.fr\/en\/wp-json\/wp\/v2\/tags?post=3872"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}