Healthcare Innovation July 7, 2024
David Raths

MGMA, WEDI urge CISA to align its reporting timelines and requirements with other federal partners, including the HHS Office for Civil Rights, to decrease the administrative burden

Stakeholders in healthcare are proposing changes to the Cybersecurity and Infrastructure Security Agency’s proposed rule on cyber incident reporting requirements under the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA).

CISA proposes to institute reporting requirements for significant cyber events for critical infrastructure sectors including healthcare.

The Medical Group Management Association expressed concerns about “burdensome, confusing, and duplicative reporting requirements that may impact medical groups’ ability operate effectively, especially in the midst of a significant cyberattack.”

Noting that medical groups are already subject to various reporting requirements under HIPAA, MGMA suggests...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Physician, Provider, Technology
Related Articles:
Cybersecurity leaders still shaky about post-attack recovery, reports show
How open-source LLMs enable security teams to stay ahead of evolving threats
Most Healthcare Organizations Have Paid $500K or More in Ransom Post-Cyberattack, Report Says
Strengthening Cybersecurity to Protect Patients and Access to Care
Why MFA alone won’t protect you in the age of adversarial AI

Share This Article