The U.S. Department of Health and Human Services (HHS), through the Administration for Strategic Preparedness and Response (ASPR), released a cybersecurity framework implementation guide for the health care and public health sectors.
Jointly developed by HHS ASPR and the Health Sector Coordinating Council Cybersecurity Working Group, the guide tailors the 2018 National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity to health care organizations.
The guide outlines actions that health care organizations can take immediately to manage cyber risks to their information technology (IT) systems. Additionally, it provides tools to assess current cybersecurity practices and risks and identify gaps for remediation.
America’s Essential Hospitals has established a resource page on IT security for essential hospitals. Visit this page for new information and updates.
Contact Director of Policy Rob Nelb, MPH, at rnelb@essentialhospitals.org or 202.585.0127 with questions.