Health IT Security November 30, 2022
Jill McKeon

The voluntary use of HITECH recognized security practices can help covered entities bolster their security postures and better protect themselves against top healthcare cybersecurity threats.

A 2021 amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act required the HHS Secretary to consider certain recognized security practices (RSPs) of covered entities and business associates when determining HIPAA Security Rule compliance and enforcement activities.

Essentially, the amendment incentivizes covered entities to implement healthcare cybersecurity best practices. Implementing RSPs is entirely voluntary, but evidence of implementation may be used as a mitigating factor in Office for Civil Rights (OCR) audits, investigations, and civil monetary penalty determinations in the aftermath of a data breach.

3 CATEGORIES OF RSPS

When determining...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HITECH, Provider, Technology
Related Articles:
Cybersecurity and hospitals: Big risks come from third parties
Key Moments From the Change Healthcare Cyberattack Senate Hearing
What are Oracle Health's priorities?
AHA CEO praises Change hack scrutiny
Why hospitals are tight-lipped about cyberattacks

Share This Article