Request Demo


The HCIC's Six Measures to Address Cyber in Health Care


Cybersecurity in the health care industry is in critical condition according to the Health Care Industry Cybersecurity (HCIC) Task Force, however, many providers lack the expertise and resources to comply. 

Cyber compliance is seen as a hurdle by many in the industry, as the regulations are sometimes “vague and redundant”. Thus, due to the lack of cybersecurity management within the industry, imminent risks cause concern particularly because of the nature of health care data - a valuable asset to any attack, especially because of its inability to change if compromised.

“The HCIC Task Force has recommended the prioritization of six high-level measures in order to address the vulnerabilities in health care cybersecurity:

  1. Define and streamline leadership, governance, and expectations for health care industry cybersecurity.
  2. Increase the security and resilience of medical devices and health IT.
  3. Develop the health care workforce capacity necessary to prioritize and ensure cybersecurity awareness and technical capabilities.
  4. Increase health care industry readiness through improved cybersecurity awareness and education.
  5. Identify mechanisms to protect research and development efforts and intellectual property from attacks or exposure.
  6. Improve information sharing of industry threats, risks, and mitigations.”

Recent threats (WannaCry) prove the importance of dedicating increased focus (especially at the board/executive level), time and resources to cybersecurity compliance and management within the health care industry. 

Read the source article on The National Law Review here.

You may also like

Why GRC Needs IRM
on February 15, 2019

Today, every organization strives to optimize the speed with which they access information. Data is being stored, processed, transmitted and utilized in almost every day-to-day ...

Alison Furneaux
Government Shutdown Cybersecurity ...
on February 12, 2019

In January, CyberSaint CEO George Wrenn penned his thoughts on the impact of the government shutdown. In his post, George foresaw the outcome of the shutdown not being a future ...

The Cybersecurity Skills Gap: The ...
on February 7, 2019

The cybersecurity skills gap is nothing new to the seasoned cyber professional. It has been widely discussed in cyber and information security circles for some time. The main flag ...

George Wrenn
The Post-Digitization CISO
on February 5, 2019

Information leaders in digital businesses, whether focusing on optimization or a full transformation, are inherently altering their position among the executive leadership. As ...

Integrated Risk Management and ...
on January 31, 2019

With technology permeating every aspect of a business, one begins to wonder what technology is reserved for digital risk management rather than the other facets of integrated risk ...

Department of Defense Launches ...
on January 29, 2019

The Defense Federal Acquisition Regulation Supplement (DFARS) mandate, specifically Clause 252.204-7012 requiring all members of the Department of Defense’s supply chain to comply ...