Information Security News mailing list archives
Healthcare organizations lagging behind NIST Cybersecurity Framework, HIPAA guidance
From: InfoSec News <alerts () infosecnews org>
Date: Fri, 12 Apr 2019 08:30:27 +0000 (UTC)
https://www.healthcareitnews.com/news/healthcare-organizations-lagging-behind-nist-cybersecurity-framework-hipaa-guidance By Mike Miliard Healthcare IT News April 11, 2019Despite some halting progress with cybersecurity readiness, healthcare is still lacking in many key areas, according to a new progress report from the consultancy CynergisTek.
In particular, the study took a look at how healthcare organizations are stacking up with the advice and best practices of the NIST Cybersecurity Framework, as well as the HIPAA privacy and security rules. The findings, say CynergisTek researchers, are "sobering."
WHY IT MATTERSTo start with, the report – based on the results of assessments, audits and reviews performed by CynergisTek at some 600 healthcare organizations and business associates – found that, from the perspective of NIST CSF most of those orgs surveyed were still performing "well below where we would like to see them," said CynergisTek CEO Mac McMillan in the report.
It found an average 47 percent conformance with NIST CSF controls and an average 72 percent compliance with the HIPAA Security Rule.
[...]
-- Subscribe to InfoSec News https://www.infosecnews.org/subscribe-to-infosec-news/ https://twitter.com/infosecnews_
Current thread:
- Healthcare organizations lagging behind NIST Cybersecurity Framework, HIPAA guidance InfoSec News (Apr 13)