Health IT Security November 30, 2022
Jill McKeon

The voluntary use of HITECH recognized security practices can help covered entities bolster their security postures and better protect themselves against top healthcare cybersecurity threats.

A 2021 amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act required the HHS Secretary to consider certain recognized security practices (RSPs) of covered entities and business associates when determining HIPAA Security Rule compliance and enforcement activities.

Essentially, the amendment incentivizes covered entities to implement healthcare cybersecurity best practices. Implementing RSPs is entirely voluntary, but evidence of implementation may be used as a mitigating factor in Office for Civil Rights (OCR) audits, investigations, and civil monetary penalty determinations in the aftermath of a data breach.

3 CATEGORIES OF RSPS

When determining...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HITECH, Provider, Technology
Related Articles:
EU action plan to make healthcare more resilient to cyber threats
The financial toll of the Change Healthcare hack: 7 numbers
The double-edged sword of AI and cybersecurity
Kristi Noem’s Bold Reset For CISA: A Return To Cybersecurity Duties
Slew of OCR activity underscores agency’s focus on security and AI

Share This Article