Bon Secours Mercy Health Company Cyber Security Posture
bsmhealth.orgOn September 1, 2018 Bon Secours Health System and Mercy Health combined to become the United States’ fifth largest Catholic health care ministry and one of the nation’s 20 largest health care systems. With 48 hospitals, thousands of providers, over 1,000 points of care and over 60,000 employees Bon Secours Mercy Health serves communities across seven states and Ireland. We are dedicated to continually improving health care quality, safety and cost effectiveness. Our hospitals, care sites and clinicians are recognized for clinical and operational excellence. By utilizing robust measurement and reporting processes, we hold ourselves accountable for enhancing care and improving outcomes for our patients, residents and clients.
BSMH Company Details
bon-secours-mercy-health-system
30848 employees
37744.0
62
Hospitals and Health Care
bsmhealth.org
Scan still pending
BON_2610667
In-progress
BSMH Risk Score (AI oriented)Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
BSMH Global Score.png)
Bon Secours Mercy Health Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
Bon Secours Mercy Health Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Bon Secours | Breach | 100 | 5 | 08/2016 | BON341622 | Link | |
Rankiteo Explanation : Attack threatening the organization's existenceDescription: Bon Secours Health System, based in Marriottsville, Md., suffered from a data breach incident after that 655,000 patients health information were exposed as a result of an error made by one of its business associates. The compromised information included names, social security numbers, insurance and banking information, and some clinical data. Bon Secours conducted a two-month internal investigation of the incident, and offered a year of credit monitoring and identity theft protection services without charge. | |||||||
| Mercy Health | Breach | 25 | 1 | 01/2020 | MER21861222 | Link | |
Rankiteo Explanation : Attack without any consequencesDescription: Mercy Health Lorain Hospital Laboratory experienced HIPAA breach due to contractor invoice printing error. No actual or attempted access or misuse of patient or guarantor information has been discovered. Batches of medical invoices created and mailed by RCM’s contracted mailing vendor were printed incorrectly. Instead of the name, street address, city, state, and zip code of the patient (or his/her guarantor) appearing in the clear address “window” of the envelope, what actually appeared were names, street addresses, and Social Security numbers. | |||||||
Bon Secours Mercy Health Company Subsidiaries
On September 1, 2018 Bon Secours Health System and Mercy Health combined to become the United States’ fifth largest Catholic health care ministry and one of the nation’s 20 largest health care systems. With 48 hospitals, thousands of providers, over 1,000 points of care and over 60,000 employees Bon Secours Mercy Health serves communities across seven states and Ireland. We are dedicated to continually improving health care quality, safety and cost effectiveness. Our hospitals, care sites and clinicians are recognized for clinical and operational excellence. By utilizing robust measurement and reporting processes, we hold ourselves accountable for enhancing care and improving outcomes for our patients, residents and clients.
Access Data Using Our API
Get company history
Rapid.png)
BSMH Cyber Security News
Tracy Griffin, Director of Information Security Risk and Assurance, Bon Secours Mercy Health
She has 20+ years of experience in healthcare operations/leadership and 13 years in cybersecurity. She has a passion for creating an organizational culture of ...
Bon Secours Mercy Health, vendor hit with lawsuit after data breach
The suit alleges the health system and a vendor failed to implement standards or promptly alert people whose data may have been exposed ...
Mercy Health patients among giant data breach affecting 8.9 million people, company says
The hacking of PJ&A's network server affects more than 8.9 million people, according to the U.S. Department of Health and Human Services. The ...
Critical Tips to Reduce Third-party Risk in Digital Healthcare
Critical tips to reduce third-party risk in digital healthcare. Learn how to protect healthcare data from breaches with robust third-party risk management ...
hellocare.ai scores $47M for AI-enabled virtual care for smart hospitals
hellocare.ai, which offers AI-enabled virtual care delivery for smart hospital rooms, has secured $47 million in an oversubscribed funding ...
Innovation Collaborative Targets Robotic Process Automation
The Institute's innovation incubator will work with Olive to co-develop and commercialize new products using Olive's automation tool set.
OnDemand | Making the Connection Between Cybersecurity and Patient Care
Discuss how to change the conversation about cybersecurity and help colleagues make the connection between strong security programs and patient care.
Bon Secours, Mercy merging into giant Catholic hospital system
Mercy Health and Bon Secours Health System, two large Catholic hospital systems spanning seven states and with almost $9 billion in combined ...
Gartner Releases Healthcare Supply Chain Top 25 for 2023: Cleveland Clinic Rated #1
The 15th annual Gartner Healthcare Supply Chain Top 25 ranking is out, offering a snapshot of the leading US health systems excelling in this crucial area.
BSMH Similar Companies
Mercy
Mercy, one of the 15 largest U.S. health systems and named the top large system in the U.S. for excellent patient experience by NRC Health, serves millions annually with nationally recognized care and one of the nation’s largest and highest performing Accountable Care Organizations in quality and co
Providence
Every day, 119,000 compassionate caregivers serve patients and communities through Providence St. Joseph Health, a national, Catholic, not-for-profit health system, driven by a belief that health is a human right. Rooted in the founding missions of the Sisters of Providence and the Sisters of St.
University Hospitals Connor Integrative Health Network
Integrative Medicine (IM) is an approach to healthcare that takes into account the whole person addressing the full range of physical, emotional, mental, social, spiritual, and environmental influences that affect an individual’s health. IM is informed by evidence, makes use of all appropriate thera
Johnson & Johnson
At Johnson & Johnson, we believe health is everything. As a focused healthcare company, with expertise in Innovative Medicine and MedTech, we’re empowered to tackle the world’s toughest health challenges, innovate through science and technology, and transform patient care. All of this is possibl
RWJBarnabas Health
RWJBarnabas Health (RWJBH) is the largest, most comprehensive academic health care system in N.J., with a service area covering eight counties with five million people. Our health system includes 12 acute care hospitals (Clara Maass Medical Center; Community Medical Center; Cooperman Barnabas Medica
Cincinnati Children's
Cincinnati Children’s, a nonprofit academic medical center established in 1883, offers services from well-child care to treatment for the most rare and complex conditions. It is the Department of Pediatrics at the University of Cincinnati College of Medicine and trains more than 600 residents and cl
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
