Healthcare Innovation July 7, 2024
David Raths

MGMA, WEDI urge CISA to align its reporting timelines and requirements with other federal partners, including the HHS Office for Civil Rights, to decrease the administrative burden

Stakeholders in healthcare are proposing changes to the Cybersecurity and Infrastructure Security Agency’s proposed rule on cyber incident reporting requirements under the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA).

CISA proposes to institute reporting requirements for significant cyber events for critical infrastructure sectors including healthcare.

The Medical Group Management Association expressed concerns about “burdensome, confusing, and duplicative reporting requirements that may impact medical groups’ ability operate effectively, especially in the midst of a significant cyberattack.”

Noting that medical groups are already subject to various reporting requirements under HIPAA, MGMA suggests...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Physician, Provider, Technology
Related Articles:
HIMSS 2025: Four big themes of the health conference
Weak cyber defenses are exposing critical infrastructure — how enterprises can proactively thwart cunning attackers to protect us all
B2B Healthcare Procurement Has a Growing Hacking Problem
Critical infrastructure at state, local levels at heightened risk of cyberattacks
MedCity Pivot Podcast: Being Clear About Cybersecurity

Share This Article