Healthcare organizations have to understand their whole digital landscape — how and why their incongruous systems function and interact — then divide, define, and determine organizational risk for all technologies systematically measured against security and privacy threats.