Case Study: Children’s Hospital of Minnesota achieves improved cybersecurity posture and risk visibility with SecurityScorecard

Children’s Hospital of Minnesota - Customer Case Study

Children’s Hospital of Minnesota, a large nonprofit pediatric health system subject to HIPAA, needed a way to define meaningful cybersecurity benchmarks and find comparable performance data from peer hospitals. CISO Paul Hypki turned to SecurityScorecard’s cybersecurity ratings platform to gain visibility into internal, external, and third‑party risks and to compare Children’s Hospital of Minnesota against well‑known children’s hospital systems.

Using SecurityScorecard, Hypki pulled peer comparisons, produced executive‑level reports, and monitored findings daily to prioritize remediation with IT and vendors. The platform allowed the team to identify specific issues (even pinpointing machines with low patching), drive collaborative vendor remediation, and show measurable improvement in Children’s Hospital of Minnesota’s security score across quarterly reports; they also plan to leverage SecurityScorecard’s Compliance features to map to NIST controls and support audits.

Children’s Hospital of Minnesota

Paul Hypki

Chief Information Security Officer