Forbes January 7, 2025
David Chou

Healthcare CIOs and CISOs are monitoring the recent Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) proposal to update the HIPAA Security Rule. These changes, outlined in a Notice of Proposed Rulemaking (NPRM), aim to increase cybersecurity protections for electronic protected health information (ePHI). As leaders evaluate the potential impact, the main question is, will these updates fulfill compliance requirements or enhance the security framework for safeguarding patient data?

Below are two themes that the critical measures fall under for healthcare CIO:

Enhanced Documentation

The proposal states that regulated entities must maintain a comprehensive and up-to-date technology asset inventory and network map that tracks electronic protected health information (ePHI) flow across their electronic...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
4 Notable Health Tech Funding Announcements in March
Solace garners $60M to expand health advocacy network
VA names 9 medical centers for Oracle EHR in 2026
HIMSS25 awards recognize those achieving Stages 6 and 7
Epic-linked online scheduling system books big gains for SSM Health

Share This Article