Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Healthcare organizations lagging behind NIST Cybersecurity Framework, HIPAA guidance

From: InfoSec News <alerts () infosecnews org>
Date: Fri, 12 Apr 2019 08:30:27 +0000 (UTC)
https://www.healthcareitnews.com/news/healthcare-organizations-lagging-behind-nist-cybersecurity-framework-hipaa-guidance

By Mike Miliard
Healthcare IT News
April 11, 2019
Despite some halting progress with cybersecurity readiness, healthcare is still lacking in many key areas, according to a new progress report from the consultancy CynergisTek.
In particular, the study took a look at how healthcare organizations are stacking up with the advice and best practices of the NIST Cybersecurity Framework, as well as the HIPAA privacy and security rules. The findings, say CynergisTek researchers, are "sobering." 


WHY IT MATTERS
To start with, the report – based on the results of assessments, audits and reviews performed by CynergisTek at some 600 healthcare organizations and business associates – found that, from the perspective of NIST CSF most of those orgs surveyed were still performing "well below where we would like to see them," said CynergisTek CEO Mac McMillan in the report.
It found an average 47 percent conformance with NIST CSF controls and an average 72 percent compliance with the HIPAA Security Rule. 

[...]


--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
Previous By Date Next
Previous By Thread Next

Current thread: