Blog
We know you have a lot of questions. That’s why our team has curated top-notch resources to help you along your healthcare cybersecurity and compliance journey.
Carrying Out a HIPAA Corrective Action Plan
What the University of Rochester Medical Center Learned From the Process
Originally published by ISMG
Mark ...
HR 7898: More Incentive for Healthcare Entities to Adopt Cybersecurity Best Practices
This new law requires the U.S. Department of Health and Human Services (HHS) to consider a healthcare entity's adoption of cybersecurity best practices when determining the length and outcome of audits or the amount of fines or extent of penalties it will impose.
A Look at the Impact of the MD Anderson Court of Appeals Decision on OCR and Your Healthcare Entity
What we can learn from this to help better prepare your organization for potential interactions with OCR now and in the future?
Business Associate to Business Associate: A CISO’s Perspective
In this blog and others that will follow in the series, it’s my goal to share insight on how we think about and approach the security of our solutions with other organizations that serve as Business Associates (BA) in the healthcare industry.
Key Things to Know About Proposed HIPAA Privacy Rule Changes
If the proposed changes become the final rule, the effective date will be 60 days from publication of the final rule.
How Enterprise Cyber Risk Management Can Facilitate Compliance Efficiency
HIPAA is not the only law that addresses data privacy and security within the healthcare industry.
EHRs and Ransomware: Protecting Your Crown Jewel
Throughout this past fall, international criminal organizations asserted their dominance over the healthcare sector through ransomware.
Getting Proactive about the Ransomware Threat
Throughout this past fall, international criminal organizations asserted their dominance over the healthcare sector through ransomware.
Yesterday’s Cyber Risk is not Today’s Cyber Risk
Over the past 10 years, the healthcare industry’s understanding of cyber risk has evolved through four distinct phases, emphasizing four different aspects of cyber risk. Understanding these four different phases gives context for where healthcare cyber risk began and where it is now.
HIPAA Privacy Rule: Potential Impacts of Proposed Changes
This past Thursday, the Office for Civil Rights (OCR) issued a statement of intent to publish a Notice of Proposed Rulemaking (NPRM) proposing to modify the HIPAA Privacy Rule.
Advancing Cyber Risk Management in our Nation’s Hospitals
The threat landscape and attack surface are evolving rapidly, and the healthcare ecosystem is becoming more interconnected. While some healthcare providers are systematically analyzing and responding to risks across the enterprise, the majority are not.
5 Keys to Building a Cyber Risk-Aware Culture
Healthcare organizations are experiencing a renewed onslaught of cyber attacks since the advent of the coronavirus pandemic.
Newsletter
Sign up for our monthly newsletter discussing hot topics and access to invaluable resources.
Featured Resource
Introduction
You just received notice that a vendor that maintains your organization’s data was hacked, and the ...