Cybersecurity, Privacy, & AI

Trending Now
Agriculture Department Kicks Off $300M Palantir Deal on IT, National Security Work • Vercel Attack Fallout Expands to More Customers and Third-Party Systems • Seeing the Cyber in Economic Statecraft • Responding to a Data Breach: How to Preserve the Attorney-Client Privilege • NIST Cyber Center to Launch OT ‘Visibility’ Project
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on March 7, 2022 • Cyber

Senate’s Cyber Bill Could Affect Health Sector

Senate’s Cyber Bill Could Affect Health Sector

Sherry V Smith | Shutterstock

The Strengthening American Cybersecurity Act passed by the Senate would require critical infrastructure operators to report significant cyber incidents to CISA within 72 hours and within 24 hours when they make a ransomware payment. Combining three previous cybersecurity bills, its other two key components include an update to the Federal Information Security Modernization Act, and authorization for FedRAMP, the governmentwide program standardizing contracted cloud services.

How this could impact the healthcare industry is not entirely clear. A ransomware attack on a DoD, VA, or State Department healthcare provider presumably would quality, and HIPAA would still apply to such entities. Service providers who serve large sectors of the healthcare industry might also. In any case, the short time periods involved could push healthcare providers to over-report when it isn’t yet clear what the scope or impact of an incident is.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.

© PubKGroup 2024