Lexology January 9, 2024
Jones Day

The Department of Health and Human Services (“HHS”) has released a concept paper outlining its new cybersecurity strategies for the health care sector, identifying cybersecurity priorities, potential future regulations and expectations of industry practices, and possible future enforcement.

In December 2023, HHS released a paper outlining new cybersecurity strategies for the health care sector to improve cyber resiliency. Although this paper does not establish express regulatory requirements, it identifies HHS’s cybersecurity priorities and previews potential future regulations. The paper noted a 93% increase in large breaches reported to the Office of Civil Rights (“OCR”); and a 278% increase in large breaches involving ransomware, from 2018 to 2022. To combat this trend, HHS outlines four categories for action:

  • Voluntary Health...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Provider, Technology
Related Articles:
Top US health agency makes $25,000 buyout offer to most of its employees
RFK Jr.'s 180 on Measles: Too Little, Too Late
RFK Jr. could further deter childhood vaccinations as rates fall in the U.S.
HHS at a glance: The $1.7 trillion agency that shapes US healthcare
What HHS' cybersecurity rule could mean for radiology

Share This Article