ARCHIVED CONTENT
You are viewing ARCHIVED CONTENT released online between 1 April 2010 and 24 August 2018 or content that has been selectively archived and is no longer active. Content in this archive is NOT UPDATED, and links may not function.Extract from article by Bill O’Connor
Health data is among the most attractive targets for cybersecurity attacks. To help ward off attacks, health care organizations and their subcontractors subject to the Health Insurance Portability and Accountability Act (HIPAA) must continuously strive to improve their protection of health data as required by the HIPAA Security Rule. Looking beyond the HIPAA Security Rule, however, to other cybersecurity frameworks is increasingly becoming a standard of practice for many organizations as they implement and update information security policies and procedures. Indeed, the U.S. Department of Health & Human Services, Office for Civil Rights (OCR), has recognized the utility of taking a broader accounting of cybersecurity standards and, on February 24, 2016, released a tool to assist HIPAA regulated entities with mapping HIPAA Security Rule standards to other cybersecurity frameworks. Security Officers and C-Suite executives will find the tool of great help in understanding expectations and what may be considered “industry standard” for organizations moving forward.
Read the complete article at OCR Releases Tool to Help Organizations Safeguard Health Data