{"id":62763,"date":"2026-01-27T21:05:04","date_gmt":"2026-01-27T20:05:04","guid":{"rendered":"https:\/\/www.invarena.cz\/?p=62763"},"modified":"2026-01-27T21:05:04","modified_gmt":"2026-01-27T20:05:04","slug":"analyza-ceske-nemocnice-nemaji-dostatecne-zajistenou-kyberbezpecnost-za-posledni-rok-se-situace-prakticky-nezmenila","status":"publish","type":"post","link":"https:\/\/www.invarena.cz\/?p=62763","title":{"rendered":"Anal\u00fdza: \u010cesk\u00e9 nemocnice nemaj\u00ed dostate\u010dn\u011b zaji\u0161t\u011bnou kyberbezpe\u010dnost, za posledn\u00ed rok se situace prakticky nezm\u011bnila"},"content":{"rendered":"\n

PRAHA, 26. ledna 2026 \u2013 S n\u00e1stupem nov\u00e9ho roku mus\u00ed b\u00fdt prakticky v\u0161echny \u010desk\u00e9 nemocnice zaregistrov\u00e1ny jako poskytovatel\u00e9 regulovan\u00fdch slu\u017eeb a n\u00e1sledn\u011b spl\u0148ovat pevn\u011b dan\u00e1 bezpe\u010dnostn\u00ed pravidla. Za roz\u0161\u00ed\u0159en\u00ed p\u016fsobnosti z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti na mnohem v\u00edce subjekt\u016f m\u016f\u017ee implementace evropsk\u00e9 sm\u011brnice NIS2. Kybernetick\u00e1 bezpe\u010dnost v \u010desk\u00fdch zdravotnick\u00fdch za\u0159\u00edzen\u00edch p\u0159itom ale z\u016fst\u00e1v\u00e1 slab\u00fdm m\u00edstem. <\/strong><\/p>\n\n\n\n

Podle aktu\u00e1ln\u00ed anal\u00fdzy \u010desk\u00e9 spole\u010dnosti ComSource, kter\u00e1 se zam\u011b\u0159uje na kyberbezpe\u010dnost, s\u00ed\u0165ovou infrastrukturu a datovou analytiku, je v pr\u016fm\u011bru zaji\u0161t\u011bna jen ze t\u0159etiny toho, co pr\u00e1vn\u00ed p\u0159edpisy po\u017eaduj\u00ed. Nemocnice nav\u00edc \u010dasto nemaj\u00ed spr\u00e1vn\u011b zaveden\u00e9 syst\u00e9my a procesy na zvl\u00e1d\u00e1n\u00ed kybernetick\u00fdch hrozeb a nejsou dostate\u010dn\u011b p\u0159ipraveny reagovat na kybernetick\u00e9 \u00fatoky. To m\u016f\u017ee m\u00edt negativn\u00ed dopad na jejich fungov\u00e1n\u00ed a ohro\u017eovat zdrav\u00ed pacient\u016f.<\/strong><\/p>\n\n\n\n

\u201eSituace nen\u00ed o nic lep\u0161\u00ed ne\u017e p\u0159ed rokem, kdy jsme vydali podobn\u00e9 varov\u00e1n\u00ed. Naopak \u2013 zat\u00edmco se diskutovalo o legislativ\u011b, \u010das plynul. Nemocnice se sice sna\u017e\u00ed, ale mnohdy jen na pap\u00ed\u0159e. V\u00edme na\u0161t\u011bst\u00ed i o pozitivn\u00edch p\u0159\u00edkladech zdravotnick\u00fdch za\u0159\u00edzen\u00ed, kter\u00e1 si vzala na\u0161i anal\u00fdzu k srdci a za\u010dala intenzivn\u011b pracovat na modernizaci sv\u00e9 kybernetick\u00e9 bezpe\u010dnosti. I tak jsou ale st\u00e1le p\u0159\u00edpady, kdy ve\u0161ker\u00e1 bezpe\u010dnost za\u010d\u00edn\u00e1 a kon\u010d\u00ed ochrankou na vr\u00e1tnici, antivirov\u00fdm programem a heslem do po\u010d\u00edta\u010de. To opravdu k zaji\u0161t\u011bn\u00ed bezpe\u010dnosti a fungov\u00e1n\u00ed nemocnice nesta\u010d\u00ed. V\u011b\u0159\u00edme, \u017ee roz\u0161\u00ed\u0159en\u00ed p\u016fsobnosti z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti na t\u00e9m\u011b\u0159 v\u0161echna zdravotnick\u00e1 za\u0159\u00edzen\u00ed bude pro n\u011b dostate\u010dn\u00fdm impulzem, aby kybernetickou ochranu brala v\u00e1\u017en\u011b. Nejde jen o form\u00e1ln\u00ed spln\u011bn\u00ed legislativy,“ <\/em>\u0159\u00edk\u00e1 Michal \u0160tus\u00e1k, expert na kybernetickou bezpe\u010dnost a spolumajitel spole\u010dnosti ComSource.<\/p>\n\n\n\n

Novela z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti implementuj\u00edc\u00ed evropskou sm\u011brnici NIS2 v\u00fdrazn\u011b roz\u0161\u00ed\u0159ila okruh subjekt\u016f, kter\u00e9 se j\u00ed mus\u00ed \u0159\u00eddit. Tyto subjekty mus\u00ed splnit \u0159adu povinnost\u00ed a dodr\u017eet ur\u010dit\u00e9 lh\u016fty. Do konce roku se organizace poskytuj\u00edc\u00ed tzv. regulovanou slu\u017ebu \u2013 kam pat\u0159\u00ed pr\u00e1v\u011b i nemocnice \u2013 musely zaregistrovat u N\u00daKIB. <\/p>\n\n\n\n

\u201eSubjekty, kter\u00e9 nestihly v dan\u00e9m \u010dase registraci prov\u00e9st, tak mohou st\u00e1le u\u010dinit, ale hroz\u00ed jim pokuty a\u017e do v\u00fd\u0161e 250 mili\u00f3n\u016f korun. Registrace ale nen\u00ed jen administrativn\u00ed z\u00e1le\u017eitost. Jde o to, aby si nemocnice uv\u011bdomily, jak\u00fd je skute\u010dn\u00fd stav jejich kybernetick\u00e9 bezpe\u010dnosti. \u0158ada z nich to zji\u0161\u0165uje teprve nyn\u00ed, a to je probl\u00e9m,“ <\/em>upozor\u0148uje Michal \u0160tus\u00e1k z ComSource.<\/p>\n\n\n\n

Legislativa stanovuje dva okruhy kyberbezpe\u010dnostn\u00edch opat\u0159en\u00ed \u2013 organiza\u010dn\u00ed a pak samotn\u00e9 technick\u00e9. Podle poznatk\u016f expert\u016f ComSource pln\u00ed nemocnice v pr\u016fm\u011bru p\u0159ibli\u017en\u011b pouze t\u0159etinu z nich \u2013 65 % opat\u0159en\u00ed nefunguje spr\u00e1vn\u011b nebo dokonce nen\u00ed v\u016fbec zavedeno, 25 % vykazuje ur\u010dit\u00e9 nedostatky a pouh\u00fdch 10 % opat\u0159en\u00ed funguje p\u0159esn\u011b tak, jak je t\u0159eba.<\/p>\n\n\n\n

Nemocnic\u00edm \u010dasto chyb\u00ed syst\u00e9my \u0159\u00edzen\u00ed bezpe\u010dnosti informac\u00ed, nastaven\u00ed \u0159\u00edzen\u00ed rizik, nebo zaji\u0161t\u011bn\u00ed bezpe\u010dnostn\u00edch rol\u00ed, nemaj\u00ed stanoven\u00e9 po\u017eadavky na zvl\u00e1d\u00e1n\u00ed kybernetick\u00fdch incident\u016f a nastaveno fungov\u00e1n\u00ed v p\u0159\u00edpad\u011b \u00fatoku. St\u00e1v\u00e1 se, \u017ee nap\u0159\u00edklad vyu\u017e\u00edvan\u00e9 IT s\u00edt\u011b tak nemaj\u00ed \u017e\u00e1dn\u00fd provozn\u00ed ani bezpe\u010dnostn\u00ed monitoring, chyb\u00ed jednotn\u00e1 spr\u00e1va \u00fa\u010dt\u016f a nepou\u017e\u00edvaj\u00ed se n\u00e1stroje pro detekci kybernetick\u00fdch bezpe\u010dnostn\u00edch ud\u00e1lost\u00ed. Naopak zpravidla v\u0161echna zdravotnick\u00e1 za\u0159\u00edzen\u00ed se v\u011bnuj\u00ed ur\u010dit\u00e9mu \u0159\u00edzen\u00ed dodavatel\u016f nebo lidsk\u00fdch zdroj\u016f i z pohledu kyberbezpe\u010dnosti.<\/p>\n\n\n\n

<\/a> \u201eNemocnice by si m\u011bly prov\u00e9st audit, b\u011bhem kter\u00e9ho by zjistily skute\u010dn\u00fd stav jejich kybernetick\u00e9 ochrany. Nen\u00ed to toti\u017e jen o tom, \u017ee jim n\u011bco chyb\u00ed \u2013 setk\u00e1v\u00e1me se i s p\u0159\u00edpady, \u017ee maj\u00ed definovan\u00e9 postupy, ale ty jsou jen n\u011bkde ulo\u017eeny a nikdo o nich nev\u00ed, co\u017e ned\u00e1v\u00e1 smysl. Nebo pot\u0159ebn\u00e9 technick\u00e9 vybaven\u00ed maj\u00ed, ale je \u0161patn\u011b nastaven\u00e9 a spravovan\u00e9, proto\u017ee chyb\u00ed kapacita kvalifikovan\u00fdch lid\u00ed v jejich IT t\u00fdmu. Pr\u00e1v\u011b dostate\u010dn\u00e1 kapacita a kvalifikace IT pracovn\u00edk\u016f je v nemocnic\u00edch obrovsk\u00fdm probl\u00e9mem,\u201c<\/em> dod\u00e1v\u00e1 Michal \u0160tus\u00e1k z ComSource.<\/p>\n","protected":false},"excerpt":{"rendered":"

PRAHA, 26. ledna 2026 \u2013 S n\u00e1stupem nov\u00e9ho roku mus\u00ed b\u00fdt prakticky v\u0161echny \u010desk\u00e9 nemocnice zaregistrov\u00e1ny jako poskytovatel\u00e9 regulovan\u00fdch slu\u017eeb a n\u00e1sledn\u011b spl\u0148ovat pevn\u011b dan\u00e1 […]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":43451,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-62763","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zpravy"],"_links":{"self":[{"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/posts\/62763","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=62763"}],"version-history":[{"count":0,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/posts\/62763\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=\/wp\/v2\/media\/43451"}],"wp:attachment":[{"href":"https:\/\/www.invarena.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=62763"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=62763"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.invarena.cz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=62763"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}