The US Department of Health and Human Services recently updated its guide to help the private and public healthcare sectors develop cybersecurity protocols that address NIST’s Framework for Improving Critical Infrastructure Cybersecurity. The guide is a toolkit, with information and resources intended to help companies implement cybersecurity programs in the health care space. While the aim of this guidance is to help companies implement NIST’s protocols for protecting US critical infrastructure, the recommendations contained in the guide mirror other agencies’ security recommendations (for example those we have written about from the Department of Labor and the FDA).
About
Kari M. Rollins is a partner in the Intellectual Property Practice Group and Office Managing Partner of the New York office.
Latest Post
More Posts
72 hours: The NCUA’s New Cyber Incident Reporting Requirement
Graduation Goods Settlement: A Good Reminder of AGs’ Data Security Priorities
Illinois Appellate Court Weighs in on Biometric Data Policies
Lessons From New York AG Scrutiny of Breach Investigation and Response
FTC Action Against Drizly and CEO Provides Insight Into Its Security Expectations
New York City Set To Regulate Employment Decisions Made By AI
Wegmans Settles With NYAG for $400,000 Over Data Incident
UK ICO and NCSC Issue Caution About Making Ransomware Payments
Maryland Amends Data Security and Breach Notice Obligations
FTC Weighs In On Data Breach Notification
NYAG Issues Credential Stuffing Guidance
Implications of SEC’s Scrutiny of Data Use Representations
SEC Fine Highlights Importance of Cybersecurity Disclosures
FTC Signals Focus on Healthcare and Technology Platforms, Among Others
About
Kari M. Rollins is a partner in the Intellectual Property Practice Group and Office Managing Partner of the New York office.