Cybersecurity Resource Guide Published

BACK TO INSIGHTS     Articles

3/31/2024

Last month, the OCR and the National Institute of Standards and Technology (NIST) jointly published Special Publication (SP) 800-66 Revision 2, Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide. The publication provides an overview of the HIPAA Security Rule, strategies for assessing and managing risks to electronic protected health information, suggestions for cybersecurity measures and solutions that HIPAA covered entities and business associates might consider as part of an information security program, and resources for implementing the Security Rule. Specific topic areas include:
• Explanations of the HIPAA Security Rule’s Risk Analysis and Risk Management requirements
• Key Activities to consider when implementing Security Rule requirements
• Actionable steps for implementing security measures
• Sample questions to determine adequacy of cybersecurity measures to protect ePHI. Additional resources are available on the NIST website.

Click Here to read the entire March 2024 Healthcare Law Update now!

If you need assistance with your HIPAA compliance program, an OCR investigation, or a data breach incident, please contact:
Lani M. Dornfeld, CHPC | 973.403.3136 | ldornfeld@bracheichler.com

*This is intended to provide general information, not legal advice. Please contact the authors if you need specific advice.

Related Practices:   Healthcare Law

Related Attorney:   Lani M. Dornfeld

Related Industry:   Healthcare