Top Free Resources for Improving Healthcare Cybersecurity
Regardless of size, structure, or budget, providers can leverage free or low-cost industry resources to improve healthcare cybersecurity.
Year: 2022
National Cyber Security Awareness Month Podcast Series
Congratulations to the many HSCC CWG Task Group Leads for their participation in our series of healthcare cybersecurity podcasts produced in partnership with Outcomes Rocket and its host Saul Marquez, for winning the Power Press Podcast Award.
Health-ISAC HSCC Response to CIRCIA RFI Final
The Health Information Sharing and Analysis Center (Health-ISAC) and the Healthcare and Public Health Sector Coordinating Council (HSCC) Cybersecurity Working Group appreciate the opportunity to submit comments related to the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA).
HSCC CWG Comments of NIST SP800
HSCC Cybersecurity letter in response to NIST request for comments on NIST SP 800-66r2 initial public draft, Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide.
HSCC Comment Letter on CISA Cross-Sector Cybersecurity Performance Goals
The HSCC Cybersecurity Working Group advises CISA to recognize the many cybersecurity tools and resources developed specifically for the health sector, and that any CISA Common Baseline Cybersecurity Performance Goals should align closely to these health sector resources to minimize confusion in the sector about the preferred frameworks to implement.
The letter was developed by members of the Measurement and Policy Task Groups, and the CWG Executive Committee.
AHA Testifies to Congress on Healthcare Cybersecurity
On behalf of our nearly 5,000 member hospitals, health systems and other health care organizations, our clinician partners – including more than 270,000 affiliated physicians, 2 million nurses and other caregivers – and the 43,000 health care leaders who belong to our professional membership groups, the AHA thanks the Subcommittee for the opportunity to testify on, and your interest in, the important issue of cybersecurity threats faced by hospitals, health systems and the health care provider field. Now more than ever, we all realize how vital hospitals are to the nation’s critical infrastructure and how important they are to our communities’ health and safety.
Health Care Cybersecurity: Is There a Role for the Anesthesia Professional?
Keeping patients safe during anesthesia care is a multifaceted challenge. The skills and vigilance of the anesthesia professional are necessary, but not sufficient. The ergonomics of the care environment, systems of care, communication between teams and many other factors ultimately impact patient safety. Now, it seems we need to add cybersecurity threats as another dimension to the patient safety battle.
Authentication: A Health-ISAC Guide for CISOs
MFA. OTP. FIDO. SMS. PKI. All of these acronyms might have you saying OMG, but they are each important to understand when it comes to managing authentication. It’s an anomaly these days when a major breach happens and compromised authentication systems don’t play a role. Multi Factor Authentication (MFA) is critical to stopping attacks — but as we’ll detail in this paper, not all MFA is the same, and attackers are catching up to some first-generation MFA tools. Health CISOs need to stay ahead of the curve.
CHIME Response to ASPR’s 2023-2026 National Health Security Strategy
The College of Healthcare Information Management Executives (CHIME) and the Association for Executives in Healthcare Information Security (AEHIS) welcomes the opportunity to submit comments in response to the Assistant Secretary for Preparedness and Response (ASPR) 2023-2026 National Health Security Strategy (NHSS) Request for Information (RFI) published in the Federal Register on February 14, 2022.
The Future of Secure Healthcare Systems Podcast
The intersection between cybersecurity and healthcare can sometimes be a complicated gray area for people that don’t know much about this topic. In this episode, we talk with Erik Decker, the Chief Information Security Officer at Intermountain Healthcare, a mastermind leader in cybersecurity in the healthcare field. When it comes to the healthcare sector, Erik reflects on how technology has to keep up with the pace we are now running in, addressing threats around cybersecurity and the relationship between AI and machine learning in this topic.