Forbes January 7, 2025
David Chou

Healthcare CIOs and CISOs are monitoring the recent Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) proposal to update the HIPAA Security Rule. These changes, outlined in a Notice of Proposed Rulemaking (NPRM), aim to increase cybersecurity protections for electronic protected health information (ePHI). As leaders evaluate the potential impact, the main question is, will these updates fulfill compliance requirements or enhance the security framework for safeguarding patient data?

Below are two themes that the critical measures fall under for healthcare CIO:

Enhanced Documentation

The proposal states that regulated entities must maintain a comprehensive and up-to-date technology asset inventory and network map that tracks electronic protected health information (ePHI) flow across their electronic...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
OT–IT Cybersecurity: Navigating The New Frontier Of Risk
The $20B Opportunity: Transforming Unused Health Data into a Strategic Asset
In a Rapidly Changing Landscape, IT Leaders Lay Out Strategies to Maintain Flexibility
How the Isle of Man seeks to spur IT innovation
CIO Podcast – Episode 107: Sutter Sync with Richard Milani

Share Article