Enhancing Cybersecurity Response in Healthcare
The National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) provides healthcare the framework required to build comprehensive resilience. The diversity within the healthcare industry landscape alongside the education and awareness about cybersecurity required challenges cybersecurity measures and the NIST CSF works at helping organizations of all sizes and types develop an iterative and dynamic cybersecurity risk management plan.
Most Healthcare Workers Admit to Non-Secure Healthcare Data Sharing
A disturbing 87 percent of healthcare workers admit to using non-secure email to send sensitive information, including PHI, according to survey data provided to HealthITSecurity.com by Kickstand Communications, which conducted the survey for secure file sharing services firm Biscom. Healthcare workers are 36 percent more likely to share regulated data such as patient information and credit card information via non-secure methods such as email than those working in financial services.
HITRUST, NIST Team up on Cybersecurity Certification
What that means: HITRUST and NIST essentially harmonized multiple industry-relevant statutory, regulatory and best practice requirements into a single framework that is both prescriptive and for healthcare organizations to get a handle on their security posture and work toward building a cybersecurity program that aligns with goals of the NIST Framework.
Best Practices to Secure Healthcare IoT, Connected Devices
The question becomes, how to you secure these devices?
· Control everything that connects into your network
· Create security based on context and layers
· Align users and the business when it comes to more connected devices in healthcare
· Always test your systems and maintain visibility
Stay up to date on the Healthcare Information Security news that you need to know by signing up for our Healthcare Briefing Here.
Critical Informatics and the Critical Informatics logo are the trademarks of Critical Informatics, Inc. All other brand names, trademarks, service marks and copyrights are the property of their respective owners. © 2017 Critical Informatics, Inc. All rights reserved.