Rubrik & MEDITECH team up on hospital cyber resilience

Rubrik and MEDITECH have announced a collaboration to add cyber resilience tools to MEDITECH healthcare systems. The arrangement covers MEDITECH Expanse deployments in self-hosted cloud environments and some on-premises settings.

The move addresses a growing problem for hospitals as ransomware and other cyber attacks disrupt clinical systems. In healthcare, outages can cut off access to electronic health records, delay treatment, and force staff to revert to manual processes.

Under the collaboration, Rubrik's security platform will integrate with MEDITECH Expanse through a single control layer designed to apply policies, detect threats, and manage recovery across customer environments. The offering is intended to help providers keep critical data protected from tampering and restore systems more quickly after an incident.

It includes support for immutable backups, threat monitoring, data recovery, and long-term archival. Rubrik said the system is designed to identify the last known clean copy of data and help organisations quarantine malware and restrict access during recovery.

The agreement gives MEDITECH customers another option as hospitals assess how to protect electronic health records across both cloud and on-premises infrastructure. It also reflects growing demand from health systems for tools focused not only on preventing attacks, but also on restoring operations when prevention fails.

Healthcare has become one of the sectors most frequently targeted by ransomware groups, with attackers drawn to the pressure hospitals face to keep services running. A successful breach can have consequences beyond financial losses, particularly when clinicians cannot access patient records or key hospital applications.

Sean Benton, Director of Computer Scientists at MEDITECH, said the company was "excited to certify Rubrik Security Cloud and give our customers more choice and flexibility when securing their critical data." He added that the collaboration "responds directly to customer interest in Rubrik's technical capabilities and established presence in the data security space."

Recovery focus

A central part of the announcement is its emphasis on recovery after an attack. For hospitals, restoring access to records and operational systems can determine how quickly normal care resumes, especially when emergency departments, wards, and outpatient services depend on connected software.

Rubrik said its platform can support recovery of critical applications within days rather than weeks, an issue that has become more prominent as healthcare providers assess how long they could function without core digital systems. The MEDITECH integration is being positioned around continuity of care as much as data protection.

Josh Howell, Healthcare Chief Technology Officer at Rubrik, said the companies aim to give healthcare organisations "a vital cyber resilience component for ensuring optimal patient outcomes." He added that protecting patient care and speeding the recovery of systems and data "has never been more significant," and said Rubrik Security Cloud offers healthcare leaders assurance that they can recover critical applications from a cyber event within days instead of weeks.

Rollout scope

The product is available immediately for selected MEDITECH customers using self-hosted cloud deployments. Rubrik is also offering early access to organisations running native integration with MEDITECH in on-premises environments.

This phased rollout suggests the companies are initially targeting providers that manage their own cloud footprint before widening support across MEDITECH's installed base of hospital systems. MEDITECH has long served hospitals and health systems that operate a mix of infrastructure models, making compatibility across both cloud and on-site environments an important consideration.

The announcement also highlights how cyber security suppliers are seeking tighter links with software at the centre of hospital operations. Electronic health record systems are among the most sensitive assets in healthcare because they sit at the intersection of clinical workflow, patient information, and hospital administration.

By embedding recovery and backup functions more directly into those environments, vendors are trying to reduce the time and complexity involved in restoring services after a breach. For healthcare operators, the practical test will be whether such integrations can shorten downtime when systems are locked, encrypted, or otherwise made unavailable.

The integration is intended to provide a consistent approach to protection and recovery across the MEDITECH estate, including cloud-based retention for longer-term data storage.