**3. Risk assessment literature and standards**

Risk management has been slowly moving into industry. In the United States, HIPAA mandates risk assessment be in place prior to new technology's being integrated into an organization.

Recently, in October 2020, Eddy and Perlrotha [12] reported on a cyber-attack that resulted in a patient death. The attack occurred when "ransomware invaded
