Hollister Incorporated has been manufacturing and distributing healthcare products across ostomy, continence, critical care, and wound care since 1921. The company operates in more than 90 countries, and that global footprint means the attack surface is broad - medical device supply chains, regulated healthcare data at scale, and the operational technology that keeps manufacturing lines running all fall under the scope.
As an independent, employee-owned company, Hollister carries a different risk calculus than a publicly traded or PE-backed competitor. There's no external shareholder pressure to cut security corners, but there's also the reality that employee ownership means every associate has skin in the game when a breach hits. The company's founder's motto - "Only first class is good enough" - suggests an operational culture where standards matter, though for a security team that likely translates to rigorous compliance requirements across dozens of regulatory regimes simultaneously.
The cybersecurity challenge here isn't abstract: healthcare product manufacturers sit squarely in the crosshairs of ransomware operators who know downtime in medical supply chains has immediate, tangible consequences. Defending a century-old organization that spans 90+ countries means dealing with legacy infrastructure, distributed endpoints, and a threat model that includes both IP theft around proprietary medical device designs and the operational disruption playbook that has hammered the healthcare sector in recent years.