Connecticut Children's operates a 214-bed pediatric hospital in Hartford and more than 30 locations across Connecticut, Eastern New York, and Western Massachusetts. The organization handles 30+ pediatric specialties as the state's only health system focused exclusively on children. The attack surface spans clinical systems, research data, teaching hospital integrations with UConn School of Medicine and Quinnipiac's Netter School, plus a research partnership with The Jackson Laboratory.
The threat model is standard healthcare - PHI protection under HIPAA, operational technology in clinical environments, and the reputational damage of any breach involving pediatric patients. Security teams operate across distributed care facilities while maintaining integrations between clinical, research, and education systems. The organization's not-for-profit status and family-centered care model mean incidents carry both regulatory and community trust consequences.
Technical domains include securing electronic health records, medical devices, imaging systems, and research data infrastructure. The multi-site footprint requires consistent security controls across hospital, outpatient, and community health locations. Teaching hospital affiliations add complexity - credentialing systems, academic network access, and research collaboration tools all expand the perimeter while supporting the mission to advance pediatric care through discovery and education.