Healthcare Information Security

Cybersecurity Best Practices

DHS Cyber Incident Response Plan Focuses on Infrastructure Risk

January 20, 2017 - The Department of Homeland Security released a refreshed version of its National Cyber Incident Response Plan (NCIRP), with a strong focus on how the US can react to cybersecurity threats to critical infrastructure. The NCIRP as previously published on September 30, 2016, with a national engagement period that went until October 31, 2016. “The NCIRP describes a national approach to dealing...


More Articles

DHS Cyber Incident Response Plan Focuses on Infrastructure Risk

by Elizabeth Snell

The Department of Homeland Security released a refreshed version of its National Cyber Incident Response Plan (NCIRP), with a strong focus on how the US can react to cybersecurity threats to critical infrastructure. The NCIRP as previously published...

NIST Releases Updated Draft Version of Cybersecurity Framework

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework...

Cybersecurity Challenges Key Focus in Federal Appointment

by Elizabeth Snell

Last week, Thomas P. Bossert was appointed to serve as Assistant to the President for Homeland Security and Counterterrorism, and will advise the President-elect on cybersecurity challenges, homeland security, and counterterrorism. The role has...

FDA Finalizes Medical Device Cybersecurity Guidance

by Elizabeth Snell

An effective medical device cybersecurity risk management program needs to include premarket and postmarket lifecycle phases, according to recent guidance from the Food and Drug Administration (FDA). Furthermore, cybersecurity should be addressed...

NIST Cybersecurity Guide Highlights Recovery, Restoration Plan

by Elizabeth Snell

Properly developing and implementing recovery plans, processes, and procedures will help organizations fully restore a system weakened during a cybersecurity event, the National Institute of Standards and Technology (NIST) explained in a recent...

CHIME Notes Cybersecurity Challenge in MACRA Final Rule

by Elizabeth Snell

More attention must be given to the current cybersecurity challenge and the persistent lack of interoperability across the nation’s health system must also be addressed in the final MACRA rule, according to the College of Healthcare Information...

Study Finds Human Factor Key Area of Cybersecurity Risk

by Elizabeth Snell

A lack of cybersecurity staff members, a lack of employee training, and not enough boardroom prioritization are top contributions to cybersecurity risk, according to a recent study from the Information Systems Security Association (ISSA) and...

Using IAM Solutions for Stronger Cybersecurity Measures

by Elizabeth Snell

Identity access management (IAM) solutions are essential for organizations that are looking to improve their cyber hygiene approach and overall cybersecurity measures, according to a recent Institute for Critical Infrastructure Technology (ICIT)...

DoS, DDoS Attack Prevention Measures for Covered Entities

by Elizabeth Snell

As healthcare continues to adopt Internet of Things (IoT) technology, denial-of-service (DoS) and distributed-denial-of-service (DDoS) attack prevention measures are becoming more prevalent, according to the latest cybersecurity newsletter from...

How Healthcare Cybersecurity Ties into Larger National Plan

by Elizabeth Snell

Many findings from a recent report by the Commission on Enhancing National Cybersecurity have direct ties to the future of healthcare cybersecurity, according to Lee Kim, director of privacy and security for HIMSS North America. The Commission...

Strong Cybersecurity Measures Need Security in IoT Devices

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently published guidelines on how organizations can utilize cybersecurity measures for IoT devices, and underlined the importance of ensuring that security systems are built directly...

US-CERT Updates Cybersecurity Incident Notification Guidelines

by Elizabeth Snell

The U.S. Computer Emergency Readiness Team (US-CERT) announced its new cybersecurity incident notification guidelines, which will go into effect on April 1, 2017. The guidelines will affect all Federal departments and agencies, as well as state,...

Half of Businesses Report Ransomware Attack in Past Year

by Elizabeth Snell

An increase in IT security spending and adjusting security strategies to focus on mitigation are two of the most common responses businesses listed after becoming the victim of a ransomware attack in the last year, according to a recent survey....

NH-ISAC, MDISS Collaborate for Medical Device Cybersecurity

by Elizabeth Snell

Three national organizations recently signed a Memorandum of Understanding (MOU) in an effort to improve medical device cybersecurity measures. The National Health Information Sharing and Analysis Center (NH-ISAC), the Medical Device Innovation,...

NIST Aims to Help Small Business Cybersecurity Measures Improve

by Elizabeth Snell

While some small businesses may assume that they are not primary targets for cyber criminals, the National Institute of Standards and Technology (NIST) wants to ensure that those organizations are able to implement the necessary cybersecurity...

Healthcare Ransomware: To Pay or Not to Pay?

by Elizabeth Snell

An increasingly popular area of concern for healthcare organizations is whether or not they should give into potential healthcare ransomware demands. Should a hospital pay thousands of dollars to regain access to data, or should it just move...

NIST Resource to Help Create Strong Cybersecurity Workforce

by Elizabeth Snell

An organization led by the National Institute of Standards and Technology (NIST) developed a new resource to ensure that organizations can “more effectively identify, recruit, develop and maintain its cybersecurity talent” and create...

HIMSS Praises DHS National Cybersecurity Response Plan

by Elizabeth Snell

Understanding the dimensions of potential cyber threats and providing better clarification on what equates a significant cyber incident are two suggestions the Healthcare Information Management Systems Society (HIMSS) provided to the Department...

Study Finds Cyberthreat Data Overwhelming to Security Workers

by Elizabeth Snell

While more organizations are likely looking for the best options to combat evolving cybersecurity threats, a recent study found that the majority of security professionals are overwhelmed by the amount of cyberthreat data that they receive. An...

HIMSS Urges Holistic Security to Combat Cybersecurity Threats

by Elizabeth Snell

As healthcare cybersecurity threats continue to evolve, covered entities must ensure that they are also adapting their approaches to data security measures, according to a recent position statement from the Healthcare Information Management Systems...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks