Lexology February 27, 2025
Bradley Arant Boult Cummings LLP

In this week’s installment of our blog series on the U.S. Department of Health and Human Services’ (HHS) HIPAA Security Rule updates in its January 6 Notice of Proposed Rulemaking (NPRM), we are exploring the justifications for the proposed updates to the Security Rule. Last week’s post on the updates related to Vulnerability Management, Incident Response & Contingency Plans can be found here.

Background

Throughout this series, we have discussed updates to various aspects of the Security Rule and explored how HHS seeks to implement new security requirements and implementation specifications for regulated entities. This week, we discuss the justifications behind HHS’s move and the challenges entities face in complying with the existing rule.

Justifications

HHS discussed multiple reasons for...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, HHS, Technology
Related Articles:
‘It Will Set Us Back Multiple Decades’: Why Public Health Experts Are Panicking About the HHS Overhaul
Which jobs were cut at CDC? Here’s a list.
KFF Health News' 'What the Health?': American Health Gets a Pink Slip
RFK Jr. Ends Public Comment On HHS Policies, Conflicts With Promised Transparency
Inside RFK Jr.’s MAHA agenda with Calley Means | Playbook Deep Dive

Share This Article