The Department of Health and Human Services has released “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients,” a publication containing voluntary cybersecurity practices for healthcare organizations of all sizes. The guidance is the result of a two-year public-private partnership between HHS and more than 150 cybersecurity and healthcare experts.
The document presents both highly technical solutions and common sense practices applicable to a wide range of healthcare facilities. The core of the document explores the five most relevant threats to the healthcare industry, and recommends 10 cybersecurity practices to mitigate them. It also emphasizes the importance of moving quickly to address these threats.