Lexology October 8, 2024
Greenberg Traurig LLP

Go-To Guide:

  • New York adopts cybersecurity requirements for general hospitals, effective Oct. 2, 2024.

  • Hospitals given one year to comply but must immediately report cybersecurity incidents.

  • Regulation mandates comprehensive programs, policies, and appointment of chief information security officers.

  • Requirements include regular testing, risk assessments, and incident response plans.

A new regulation related to cybersecurity program requirements for all New York general hospitals licensed under Article 28 of the Public Health Law (PHL) took effect Oct. 2, 2024. All general hospitals must comply with the new provisions within one year of the adoption date, except that general hospitals must immediately begin notifying the New York State Department of Health (Department) of...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, Provider, States, Technology
Related Articles:
Notorious Ransomware Gang Warns New Attacks Incoming On Feb. 3, 2025
7 of the biggest healthcare cyberattack and breach stories of 2024
‘Orgs need to be ready’: AI risks and rewards for cybersecurity in 2025
Healthcare cybersecurity in 2025: 3 things to know
Another House bill aims to protect against hospital cyberattacks

Share This Article