Health IT Security November 30, 2022
Jill McKeon

The voluntary use of HITECH recognized security practices can help covered entities bolster their security postures and better protect themselves against top healthcare cybersecurity threats.

A 2021 amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act required the HHS Secretary to consider certain recognized security practices (RSPs) of covered entities and business associates when determining HIPAA Security Rule compliance and enforcement activities.

Essentially, the amendment incentivizes covered entities to implement healthcare cybersecurity best practices. Implementing RSPs is entirely voluntary, but evidence of implementation may be used as a mitigating factor in Office for Civil Rights (OCR) audits, investigations, and civil monetary penalty determinations in the aftermath of a data breach.

3 CATEGORIES OF RSPS

When determining...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HITECH, Provider, Technology
Related Articles:
Hospital cybersecurity spend to rise in 2025: 4 details
GAO: HHS falls short on healthcare cybersecurity
Healthcare ransomware attacks surge in 2024: 5 things to know
The cybersecurity provider’s next opportunity: Making AI safer
Cyber resiliency in healthcare — 3 roundtable takeaways

Share This Article