Lexology February 15, 2024
Jones Day

The Department of Health and Human Services (“HHS”) has released voluntary cybersecurity performance goals for the health care and public health sectors, which outline an increasingly standardized regulatory approach and preview more intensive future enforcement efforts.

Following the HHS’s 2023 concept paper outlining strategies to enhance cybersecurity for the health care and public health sectors, the HHS released its Healthcare and Public Health Sector-Specific Cybersecurity Performance Goals (“CPGs”). These CPGs are categorized into “essential” and “enhanced” goals to address common cyber-related vulnerabilities in the health sector. According to HHS, the CPGs are built from and informed by common industry cybersecurity frameworks, guidelines, and best practices. Although compliance with CPGs is currently voluntary, HHS’s concept paper reported its intention to implement...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Provider, Technology
Related Articles:
Dr. Oz, RFK Jr. on Medicare, Medicaid: 10 notes
RFK Jr. eyes overhaul of Medicare physician pay: What to know
Reading RFK Jr.’s tea leaves
New HHS leader could overhaul Medicare physician reimbursement: reports
Docs deem RFK Jr. a ‘damaging’ and ‘devastating’ pick for HHS Secretary, but some see a silver lining

Share This Article