2017 Health Care Industry Cybersecurity Task Force Report Published
The Cybersecurity Act of 2015 was established in order to gather a Task Force comprised of private and public subject matter experts who collectively will develop a report outlining action items towards a strategy to mitigate the vulnerability of cyber attacks to the health care industry.
The report outlines six imperatives that are supported by layers of recommendations and action items that are designed to address common challenges as well as those unique to organizations public, private, large and small.
With the advent of every aspect of life taking place in the cloud, the health care industry must work to keep pace with what consumers of every level of health care are expecting. There are multiples of paths that health care data travel and even with federal and state laws and regulations in place, there are huge gaps in how data is protected.
In the end, it boils down to patient safety and protecting the security of personal data. Other industries that are regulated, or that know of the devastating consequences of data breaches to customer data have made consistent and progressive efforts.
The health care industry has fallen behind because of limited resources and an antiquated belief system to data cyber security—some credentialing departments are still fully paper driven.
Progressive data companies such as Verisys Corporation have put high-level measures in place to protect health care data to a Tier 3+ level. Driven by a dedicated security officer with deep expertise, Verisys’ security policies and procedures are frequently evaluated and audited. Learn more about Verisys’ security measures and best practices to protect your organization.
The 6 imperatives that will drive recommendations and action items are listed below:
- 1. Define and streamline leadership, governance, and expectations for health care industry cybersecurity.
- 2. Increase the security and resilience of medical devices and health IT.
- 3. Develop the health care workforce capacity necessary to prioritize and ensure cybersecurity awareness and technical capabilities.
- 4. Increase health care industry readiness through improved cybersecurity awareness and education.
- 5. Identify mechanisms to protect research and development efforts and intellectual property from attacks or exposure.
- 6. Improve information sharing of industry threats, weaknesses, and mitigations.
Stay tuned for more commentary and analysis.
More information about the Task Force.
|Written by Susen Sawatzki
Healthcare Industry Expert
Muse. Writer. Publisher. Producer. Creator of Inspiring Narratives.
Connect with Susen on LinkedIn