HHS releases voluntary cyber security practices

January 28, 2019

In December, HHS released voluntary cyber security practices to the health care industry with the aim of providing practice guidelines to reduce cyber security risks.

The Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients publication provides guidance to health care organizations of all types and sizes, ranging from local clinics to large hospital systems.

The publication is the result of a two-year effort that brought together more than 150 cyber security and health care experts from industry and the government. It explores the five most relevant threats to the health care industry and recommends 10 cyber security practices to help mitigate these threats. Real-life events and statistics are presented to demonstrate the financial and patient care effects of cyber incidents.

The publication also includes two technical volumes geared for IT and IT security professionals, one focusing on cyber security practices for small health care organizations, and one focused on practices for medium and large health care organizations.

Previous Article
Deadline to Report 2018 HIPAA Breaches Approaching

If you experienced a HIPAA breach that affected fewer than 500 individuals in 2018, the deadline to report ...

Next Article
Update: New schedule II prescription forms required by June 1
Update: New schedule II prescription forms required by June 1

Texas physicians will be required to use new schedule II prescription forms beginning June 1, 2019.