Healthcare Information Security

NIST Cybersecurity Framework

Recent Executive Order to Strengthen Federal Cybersecurity

May 12, 2017 - Improving federal cybersecurity, specifically in the nation’s networks and infrastructure settings, is the key focus in a recent executive order President Trump signed earlier this week. Federal network cybersecurity must be improved in policy, findings, and risk management, according to a White House statement. “The President will hold heads of executive departments and agencies...

More Articles

House Committee Passes NIST Small Business Cybersecurity Act

by Elizabeth Snell

The US House Committee on Science, Space, and Technology passed the NIST Small Business Cybersecurity Act of 2017 earlier this week in an effort to ensure that small businesses are given necessary resources to reduce their risk for cybersecurity...

HIMSS Urges Holistic Approach in NIST Cybersecurity Framework

by Elizabeth Snell

Having a holistic approach to healthcare cybersecurity is essential in the industry, but there is a lack of alignment between the people, processes, and technology, according to HIMSS. That lack of alignment often creates difficulty for healthcare...

Healthcare Information Sharing Need Stressed in Recent Hearing

by Elizabeth Snell

Industry stakeholders recently met at a Subcommittee on Oversight and Investigations hearing on how to improve healthcare cybersecurity. Stronger healthcare information sharing was underlined as a key factor in strengthening the public-private...

How Healthcare Benefits from Cybersecurity Guidelines

by Elizabeth Snell

Healthcare entities have several key cybersecurity frameworks to utilize when it comes to implementing necessary cybersecurity guidelines. However, not all organizations necessarily have access to the same type of guidance. Nearly half –...

HITRUST CSF Roadmap Focuses on Small Healthcare Orgs, NIST CSF

by Elizabeth Snell

HITRUST announced enhancements to its cybersecurity framework, which will assist smaller healthcare organizations create stronger risk management programs, cybersecurity measures, and help them achieve NIST Cybersecurity Framework (NIST CSF)...

Healthcare Cybersecurity Increasingly Key Issue in C-Suite

by Elizabeth Snell

Healthcare providers are continuing to prioritize cybersecurity concerns, according to a recent KLAS Research and College of Healthcare Information Management Executives (CHIME) study. In efforts to ensure stronger data security measures, more...

GAO Urges Improvement in Federal Cybersecurity Measures

by Elizabeth Snell

Improvements must be made to the federal government’s cybersecurity measures, especially to ensure that federal information systems and cyber critical infrastructure remain secure, according to a recent GAO report.   Changes will also...

Cybersecurity Risk Management Focus in HITRUST Catalogue

by Elizabeth Snell

Having a stronger understanding of cybersecurity risk management is a key way for healthcare organizations to view potential risk areas and keep data secure, according to the Health Information Trust Alliance (HITRUST). That was a driving factor...

NIST Releases Updated Draft Version of Cybersecurity Framework

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework...

NIST Cybersecurity Guide Highlights Recovery, Restoration Plan

by Elizabeth Snell

Properly developing and implementing recovery plans, processes, and procedures will help organizations fully restore a system weakened during a cybersecurity event, the National Institute of Standards and Technology (NIST) explained in a recent...

NIST Resource to Help Create Strong Cybersecurity Workforce

by Elizabeth Snell

An organization led by the National Institute of Standards and Technology (NIST) developed a new resource to ensure that organizations can “more effectively identify, recruit, develop and maintain its cybersecurity talent” and create...

How FTC Data Security Aligns with NIST Cybersecurity Framework

by Elizabeth Snell

The NIST Cybersecurity Framework (CSF or The Framework) aligns with how FTC data security measures are outlined, according to a recent FTC blog post. Specifically, “the alleged lapses the FTC has challenged through its law enforcement actions...

NIST Cybersecurity Framework Updates, Clarification Underway

by Elizabeth Snell

The NIST Cybersecurity Framework will receive a minor update, which will include updating the informative references, clarifying guidance for implementation tiers, and placement of cyber threat intelligence in the core, according to a recent...

ICIT Explains NIST Guide Impact on Healthcare Cybersecurity

by Elizabeth Snell

As health IT developers work to create the latest platforms and tools for the industry, it is essential that healthcare cybersecurity measures remain a top priority. However, numerous types of healthcare organizations should take note of a guide...

Reviewing Medical Device Security Guidelines

by Elizabeth Snell

Medical device security considerations are essential for covered entities, especially as more organizations are beginning to implement and utilize connected devices. Not only could a compromised medical device potentially allow an unauthorized...

Reviewing Important Healthcare Cybersecurity Frameworks

by Sara Heath

Healthcare cybersecurity is a significant issue as of late, with several hospitals and practices falling victim to ransomware and malware attacks. Just recently, a ransomware attack affected Hollywood Presbyterian in California, causing the hospital...

How Can the NIST Cybersecurity Framework Improve?

by Jacqueline Belliveau

Leaders from a myriad of industries, including healthcare, provided feedback on the National Institute of Standards and Technology’s Cybersecurity Framework (NIST CSF). NIST recently released an analysis of the comments, which evaluate...

OCR Crosswalk Connects HIPAA Security Rule, NIST Framework

by Elizabeth Snell

The HIPAA Security Rule and NIST Cybersecurity Framework have certain areas of overlap, but healthcare organizations might need extra assistance in understanding how the two can work together in helping to create a comprehensive security program....

CHIME, AEHIS Want Better Risk Management in NIST Framework

by Elizabeth Snell

Improved risk management, a more balanced compliance approach, and more education around cybersecurity were some of the recommendations given to the National Institute for Standards and Technology (NIST) by the College of Healthcare Information...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks