Healthcare Information Security

NIST Cybersecurity Framework

NIST Releases Updated Draft Version of Cybersecurity Framework

January 11, 2017 - The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework Workshop 2016 attendees. The Framework was first published in February 2014, under a presidential executive order direction. The primary goals...


More Articles

NIST Releases Updated Draft Version of Cybersecurity Framework

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework...

NIST Cybersecurity Guide Highlights Recovery, Restoration Plan

by Elizabeth Snell

Properly developing and implementing recovery plans, processes, and procedures will help organizations fully restore a system weakened during a cybersecurity event, the National Institute of Standards and Technology (NIST) explained in a recent...

NIST Resource to Help Create Strong Cybersecurity Workforce

by Elizabeth Snell

An organization led by the National Institute of Standards and Technology (NIST) developed a new resource to ensure that organizations can “more effectively identify, recruit, develop and maintain its cybersecurity talent” and create...

How FTC Data Security Aligns with NIST Cybersecurity Framework

by Elizabeth Snell

The NIST Cybersecurity Framework (CSF or The Framework) aligns with how FTC data security measures are outlined, according to a recent FTC blog post. Specifically, “the alleged lapses the FTC has challenged through its law enforcement actions...

NIST Cybersecurity Framework Updates, Clarification Underway

by Elizabeth Snell

The NIST Cybersecurity Framework will receive a minor update, which will include updating the informative references, clarifying guidance for implementation tiers, and placement of cyber threat intelligence in the core, according to a recent...

ICIT Explains NIST Guide Impact on Healthcare Cybersecurity

by Elizabeth Snell

As health IT developers work to create the latest platforms and tools for the industry, it is essential that healthcare cybersecurity measures remain a top priority. However, numerous types of healthcare organizations should take note of a guide...

Reviewing Medical Device Security Guidelines

by Elizabeth Snell

Medical device security considerations are essential for covered entities, especially as more organizations are beginning to implement and utilize connected devices. Not only could a compromised medical device potentially allow an unauthorized...

Reviewing Important Healthcare Cybersecurity Frameworks

by Sara Heath

Healthcare cybersecurity is a significant issue as of late, with several hospitals and practices falling victim to ransomware and malware attacks. Just recently, a ransomware attack affected Hollywood Presbyterian in California, causing the hospital...

How Can the NIST Cybersecurity Framework Improve?

by Jacqueline Belliveau

Leaders from a myriad of industries, including healthcare, provided feedback on the National Institute of Standards and Technology’s Cybersecurity Framework (NIST CSF). NIST recently released an analysis of the comments, which evaluate...

OCR Crosswalk Connects HIPAA Security Rule, NIST Framework

by Elizabeth Snell

The HIPAA Security Rule and NIST Cybersecurity Framework have certain areas of overlap, but healthcare organizations might need extra assistance in understanding how the two can work together in helping to create a comprehensive security program....

CHIME, AEHIS Want Better Risk Management in NIST Framework

by Elizabeth Snell

Improved risk management, a more balanced compliance approach, and more education around cybersecurity were some of the recommendations given to the National Institute for Standards and Technology (NIST) by the College of Healthcare Information...

HIMSS: NIST Cybersecurity Framework Positive, Can Improve

by Elizabeth Snell

While the National Institute for Standards and Technology’s (NIST) Cybersecurity Framework can be greatly beneficial for the healthcare industry, the Healthcare Information and Management Systems Society (HIMSS) explained that the Framework...

How Administrative Safeguards Can Prevent Data Breaches

by Elizabeth Snell

Preventing healthcare data breaches is a common goal for covered entities of all sizes. It can be easy to let the importance of administrative safeguards fall behind other areas, such as concerns over hacking and stolen devices, but organizations...

NIST Calls for Public Comment on Cybersecurity Framework

by Sara Heath

The National Institute for Standards and Technology (NIST) is seeking public comments on its Framework for Improving Critical Infrastructure Cybersecurity, which was released in February of 2014. According to a NIST press release, the organization...

NIST, NCCoE Develop Mobile Device Security Draft Guide

by Sara Heath

To combat issues of mobile device security, the National Institute of Standards and Technology (NIST) and the National Cybersecurity Center of Excellence (NCCoE) have developed a guideline for implementing mobile security measures on both personal...

NIST Guide Could Assist in Protecting Patient Privacy Online

by Elizabeth Snell

Protecting patient privacy is an essential aspect to any healthcare organization’s data security plan. However, employees still need to be able to access that data. Being able to properly manage accounts can be critical to ensuring patient...

NIST Releases Draft Guidance on Improving Data Security

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently published draft guidance on how organizations can improve their approach to data security. The guide discusses how using an attribute based access control (ABAC) system could...

NIST Releases Draft Guide on Mobile Device Security

by Elizabeth Snell

The National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) released a draft guide for healthcare providers on mobile device security. The draft is designed to help facilities keep patient...

NIST Cybersecurity, Data Privacy Report Open for Comments

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) drafted a report from the Executive Technical Workshop on Improving Cybersecurity and Consumer Privacy, and the NIST cybersecurity draft focuses on how data is securely transmitted. “We’d...

NIST Common Security Framework implementation tiers

by Alma Cole

Last week, we discussed the three core components to the National Institute of Standard and Technology (NIST) Cyber Security Framework (CSF): the Framework Core, Framework Profiles, and Framework Implementation Tiers. After analyzing the importance...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks