Fondazione IRCCS Policlinico San Matteo, recognized for highly specialized hospitalization and treatment services as well as research and teaching, has consolidated its cyber exposure management capabilities by implementing Armis Centrix™.
San Matteo’s IT department includes 25 employees and 5 external consultants, organized into teams focused on the application environment and infrastructure (networks, systems, and cybersecurity). Operating in a clinical context with a large number of connected assets, the organization needed continuous visibility and governance across its technology environment, from on-premises systems to cloud-connected resources to support risk-based decision-making and operational continuity.
The Challenge
One of the main drivers for San Matteo was aligning with evolving European cybersecurity requirements, including NIS and NIS2, which raise expectations for the security and governance of critical services. In this context, the hospital needed to establish and maintain a continuous, accurate asset inventory, including devices not fully managed through traditional tools, improve risk prioritization, starting from vulnerability identification and assessment across connected devices and strengthen operational governance by integrating security-relevant asset data into existing processes and systems.
Right from the start, Armis Centrix™ proved to be the ideal platform for asset inventory, and vulnerability identification and assessment of connected devices.
Armis Centrix™ offers a comprehensive overview of information, numerous integrations with vendors and technologies already in the facility, as well as important support to the San Matteo team. Using artificial intelligence-based behavioral analysis of traffic, the platform detects anomalies in device behaviors and promptly flags any intrusion risks. In addition, Armis provides this information in real time, making automated interventions effective and immediate.
Continue reading to how the implementation strengthened San Matteo’s security posture by improving visibility, inventory accuracy, and real-time monitoring across connected assets, while also supporting more structured risk prioritization.
Challenges
-
Support alignment with evolving EU cybersecurity requirements, including NIS and NIS2, for critical services. -
Establish continuous, accurate asset inventory and uncover unmanaged/unknown connected devices. -
Improve vulnerability identification and risk prioritization across connected equipment. -
Enrich operational governance by integrating asset intelligence into existing processes (including CMDB).
Results
-
100% visibility of all managed and unmanaged connected assets. -
Improved vulnerability management through clearer prioritization based on asset context and exposure. -
Reduced downtime and increased the number of examinations performed, with potential to reduce waiting times for instrumental exams, thanks to utilization analytics for electromedical devices. -
Enabled utilization analytics for electromedical devices, reducing downtime and increasing the number of examinations performed, with potential to reduce waiting times for instrumental exams.