Cross-Platform Risk Scoring for Cloud-Based Electronic Health Records Using AI-Augmented Vulnerability Management

Authors

  • Arina Chimamanda Cloud Security Analyst, Nigeria. Author
  • Bertram Usher Shaw AI/ML Ops Engineer, Nigeria. Author

Keywords:

AI risk scoring, Cloud EHR, Vulnerability management, Cybersecurity, Threat modeling, Cross-platform integration, Health informatics security

Abstract

As Electronic Health Records (EHRs) increasingly transition to cloud-based infrastructures, the need for robust cybersecurity frameworks becomes paramount. This paper presents an AI-augmented risk scoring model that integrates multi-platform vulnerability management systems to evaluate and mitigate cybersecurity threats in cloud-based EHR systems. By aggregating threat intelligence across operating systems and platforms, the model dynamically assesses risk scores based on real-time exploitability, severity metrics, and asset criticality. A comprehensive review of existing literature, an AI-driven scoring algorithm, and a prototype implementation are discussed, showcasing the model's effectiveness in reducing the mean time to detect (MTTD) and mean time to respond (MTTR) to EHR vulnerabilities. The study contributes to the development of proactive, adaptive defense mechanisms that are platform-agnostic and scalable across heterogeneous healthcare environments.

References

Wang, Li, et al. "Deep Learning-Based Vulnerability Classification in Cloud Environments." IEEE Transactions on Dependable and Secure Computing, vol. 20, no. 3, 2023, pp. 519–530.

Gundaboina, A. (2025). Endpoint Security for Healthcare Devices: Protecting Patient Data on Windows and Samsung Assets. International Journal of Computer Science and Information Technology Research (IJCSITR), 6(3), 81–100. https://doi.org/10.63530/IJCSITR_2025_06_03_007

Patel, Anand, and Joan Morris. "AI-Driven Risk Assessment for IoT-Based Healthcare Systems." Journal of Biomedical Informatics, vol. 132, no. 2, 2022, pp. 120–133.

Lopez, Marina, and Yan Cheng. "Predictive Security for Hybrid Cloud Using Bayesian Networks." ACM Transactions on Cybersecurity, vol. 12, no. 1, 2024, pp. 1–17.

Agarwal, Dev, et al. "Reinforcement Learning for Patch Optimization in Health IT Systems." Health Informatics Journal, vol. 29, no. 4, 2023, pp. 680–695.

Gundaboina, A. (2025). Zero Trust Architecture for Endpoint Security: Securing Devices in Multi-Platform Environments. World Journal of Advanced Research and Reviews, 26(2), 4531–4543. https://doi.org/10.30574/wjarr.2025.26.2.1672

Jackson, Ruth, et al. "Security Vulnerability Forecasting Using Graph-Based Learning." Computers & Security, vol. 123, no. 1, 2024, pp. 28–45.

Sun, Ting, and Ravi Nair. "Cloud-Based EHR: Challenges and Mitigation Strategies." International Journal of Medical Informatics, vol. 159, no. 2, 2023, pp. 78–90.

Owens, Caleb, et al. "Cross-Platform Threat Analysis in Healthcare IT." Journal of Cybersecurity, vol. 8, no. 4, 2023, pp. 203–219.

Gundaboina, A. (2025). Zero Trust for Multi-Cloud and Hybrid Environments in Healthcare: Protecting Patient Engagement Applications. World Journal of Advanced Research and Reviews, 26(1), 4236–4245. https://doi.org/10.30574/wjarr.2025.26.1.1140

Kim, Soo Jin, and Thomas Beale. "Asset-Aware Risk Scoring in Distributed EHR Systems." Information Systems Frontiers, vol. 26, no. 1, 2024, pp. 112–126.

Ahmed, Farah, et al. "AI in Cybersecurity: A Healthcare Perspective." Journal of Information Security and Applications, vol. 73, no. 3, 2022, pp. 41–57.

Chen, Xinyi, and Gloria Thomas. "Real-Time Threat Detection in EHR Clouds." Health and Technology, vol. 14, no. 2, 2024, pp. 145–161.

Gundaboina, A.K. (2025). Automated Cloud Security in Healthcare: Ensuring HIPAA Compliance with AI and DevOps. Journal of Artificial Intelligence & Cloud Computing, SRC/JAICC-461. https://doi.org/10.47363/JAICC/2025(4)434

Duan, Jie, et al. "Explainable AI for Cybersecurity Decision-Making." ACM Journal on Emerging Technologies, vol. 11, no. 1, 2023, pp. 33–48.

Shah, Kiran, and Louise Tran. "Comparative Study of Vulnerability Scanners in EHR Platforms." Cybersecurity and Privacy, vol. 7, no. 2, 2024, pp. 87–102.

Barnes, Alicia. "Cloud Risk Scoring in Healthcare Enterprises." Information & Computer Security, vol. 32, no. 3, 2023, pp. 225–238.

Gundaboina, A. (2025). Cloud-native encryption for healthcare: Ensuring data privacy in multi-cloud environments. World Journal of Advanced Research and Reviews, 25(1), 2500–2509. https://doi.org/10.30574/wjarr.2025.25.1.0068

Zhang, Mei, et al. "Federated Security for Multi-Institution EHR Systems." Journal of Healthcare Engineering, vol. 15, no. 1, 2024, pp. 19–34.

Thomas, Riley, and John Howard. "AI-Augmented Cybersecurity for Critical Infrastructure." IEEE Access, vol. 11, no. 5, 2023, pp. 12311–12328.

Downloads

Published

2026-01-06

Issue

Vol. 15 No. 1 (2026): International Journal of Information Technology and Electrical Engineering (IJITEE)

Section

Articles

License

Copyright (c) 2026 Arina Chimamanda, Bertram Usher Shaw (Author)

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

How to Cite

Arina Chimamanda, & Bertram Usher Shaw. (2026). Cross-Platform Risk Scoring for Cloud-Based Electronic Health Records Using AI-Augmented Vulnerability Management. International Journal of Information Technology and Electrical Engineering (IJITEE), 15(1), 7–12. https://ijitee.com/index.php/home/article/view/IJITEE_1501002