Welcome to the Healthcare and Public Health Sector Coordinating Council (HSCC) Cybersecurity Working Group (CWG).

The healthcare system is one of 16 national critical infrastructures, as identified in a series of presidential executive orders dating back to 1998, establishing public-private partnerships for critical infrastructure protection.  The HSCC is recognized by the U.S. Department of Health and Human Services as the critical infrastructure industry partner with the government for coordinating strategic, policy and operational approaches to prepare for, respond to, and recover from significant cyber and physical threats to the ability of the sector to deliver critical assets and services to the public. These threats include natural, technological and man-made disasters, and national or regional health crises.

The HSCC represents the primary healthcare subsectors of direct patient care; public health; health plans and payers; pharma, blood and labs; medical technology; health information technology; and funeral homes and mass fatality managers.

The mission of the HSCC CWG is to collaborate with the Department of Health and Human Services and other federal agencies to identify and mitigate systemic risks that affect patient safety, security, and privacy, and consequently, national confidence in the healthcare system. Primary HSCC outputs for risk mitigation are the development of recommendations, best practices and guidance for enterprise cybersecurity improvements, as well as advice to government partners about policy and regulatory solutions that facilitate mitigation of cybersecurity threats to the sector.

The partnership offers many resources to help owners and operators manage risks, improve security, and aid the implementation and execution of protective and response measures across the Healthcare Sector.