Cybersecurity, Privacy, & AI

Trending Now
AI Directive Focuses Patching Efforts on ‘Highest Risk’ Vulnerabilities • OpenAI: ‘Likely’ Chinese Influence Operation Tried to Use ChatGPT to Stir Debate on Data Centers • Executive Order on “Promoting Advanced Artificial Intelligence Innovation and Security” • GSA Playing Catch-Up With Industry on AI and Tech, Agency Head Says • Warner Proposes Overhaul of Critical Infrastructure Cyber Plans as AI Threats Rise
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on March 7, 2022 • Cyber

Senate’s Cyber Bill Could Affect Health Sector

Senate’s Cyber Bill Could Affect Health Sector

Sherry V Smith | Shutterstock

The Strengthening American Cybersecurity Act passed by the Senate would require critical infrastructure operators to report significant cyber incidents to CISA within 72 hours and within 24 hours when they make a ransomware payment. Combining three previous cybersecurity bills, its other two key components include an update to the Federal Information Security Modernization Act, and authorization for FedRAMP, the governmentwide program standardizing contracted cloud services.

How this could impact the healthcare industry is not entirely clear. A ransomware attack on a DoD, VA, or State Department healthcare provider presumably would quality, and HIPAA would still apply to such entities. Service providers who serve large sectors of the healthcare industry might also. In any case, the short time periods involved could push healthcare providers to over-report when it isn’t yet clear what the scope or impact of an incident is.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.

© PubKGroup 2024