Forbes January 7, 2025
David Chou

Healthcare CIOs and CISOs are monitoring the recent Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) proposal to update the HIPAA Security Rule. These changes, outlined in a Notice of Proposed Rulemaking (NPRM), aim to increase cybersecurity protections for electronic protected health information (ePHI). As leaders evaluate the potential impact, the main question is, will these updates fulfill compliance requirements or enhance the security framework for safeguarding patient data?

Below are two themes that the critical measures fall under for healthcare CIO:

Enhanced Documentation

The proposal states that regulated entities must maintain a comprehensive and up-to-date technology asset inventory and network map that tracks electronic protected health information (ePHI) flow across their electronic...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
Fight Clinician Burnout with Better Interoperability Built on Clear Communication
The Key to Solving Medication Errors is At The Intersection of Technology and Standards
Optum Health regional CIO exits
Black Book Research Identifies Top Global Growth Opportunities for openEHR Adoption in 2025
HIMSS and ViVE Recap – Healthcare IT Today Podcast Episode 163

Share This Article