Health IT Security November 30, 2022
Jill McKeon

The voluntary use of HITECH recognized security practices can help covered entities bolster their security postures and better protect themselves against top healthcare cybersecurity threats.

A 2021 amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act required the HHS Secretary to consider certain recognized security practices (RSPs) of covered entities and business associates when determining HIPAA Security Rule compliance and enforcement activities.

Essentially, the amendment incentivizes covered entities to implement healthcare cybersecurity best practices. Implementing RSPs is entirely voluntary, but evidence of implementation may be used as a mitigating factor in Office for Civil Rights (OCR) audits, investigations, and civil monetary penalty determinations in the aftermath of a data breach.

3 CATEGORIES OF RSPS

When determining...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HITECH, Provider, Technology
Related Articles:
7 of the biggest healthcare cyberattack and breach stories of 2024
‘Orgs need to be ready’: AI risks and rewards for cybersecurity in 2025
Healthcare cybersecurity in 2025: 3 things to know
Another House bill to aims to protect against hospital cyberattacks
Q&A: CybersolutionsMD CEO on preventing cyberattacks

Share This Article