HHS releases voluntary cyber security practices

In December, HHS released voluntary cyber security practices to the health care industry with the aim of providing practice guidelines to reduce cyber security risks.

The Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients publication provides guidance to health care organizations of all types and sizes, ranging from local clinics to large hospital systems.

The publication is the result of a two-year effort that brought together more than 150 cyber security and health care experts from industry and the government. It explores the five most relevant threats to the health care industry and recommends 10 cyber security practices to help mitigate these threats. Real-life events and statistics are presented to demonstrate the financial and patient care effects of cyber incidents.

The publication also includes two technical volumes geared for IT and IT security professionals, one focusing on cyber security practices for small health care organizations, and one focused on practices for medium and large health care organizations.

Previous Article
What we can learn from the Capital One breach

Approximately 100 million people in the U.S. had their personal information obtained by a software engineer...

Next Article
Anthem pays $16 million HIPAA penalty
Anthem pays $16 million HIPAA penalty

Anthem will pay $16 million after cyber attacks exposed the ePHI of 79 million people

Podcast: Tech, Telemedicine, Tomorrow

LISTEN