AHA Testifies on Regulatory Burden, Cybersecurity

Jul 18, 2018 - 03:24 PM
cybersecurity-hand-lock-graphic_900x400

The AHA today discussed the need to reduce the regulatory burden on providers to improve patient care during a House Committee on Oversight and Government Reform Subcommittee on Intergovernmental Affairs hearing.
 
“A reduction in administrative burden will enable providers to focus on patients, not paperwork, and reinvest resources in improving care, improving health and reducing costs,” said John Riggi, AHA senior advisor for cybersecurity and risk.
 
Riggi said that “while federal regulation is necessary to ensure that health care patients receive safe, high-quality care, in recent years, clinical staff — doctors, nurses and caregivers — find themselves devoting more time to regulatory compliance, taking them away from patient care. Some of these rules do not improve care, and all of them raise costs.”
 
Specifically, Riggi discussed an AHA report on regulatory burden, which, among other findings, revealed that health systems, hospitals and post-acute care providers must comply with 629 discrete regulatory requirements across nine domains and spend nearly $39 billion a year solely on the administrative activities related to regulatory compliance. In addition, he said, an average-size hospital dedicates 59 full-time equivalents to regulatory compliance, over one-quarter of which are doctors and nurses, pulling clinical staff away from patient care responsibilities.
 
In AHA’s written statement for the hearing, Riggi also discussed the unique cybersecurity challenges confronting the health care sector, and how hospitals and health systems are responding.
 
“Hospitals and health systems have made great strides to defend their networks, secure patient data, preserve the efficient delivery of health care services, and most importantly, protect patient safety,” Riggi said. “However, we cannot do it alone. We need more active support from the government to defend patients from cyber threats … a ‘whole of nation approach’ is what is truly needed.”

Related News Articles

Headline
OCR launches webpage with HIPAA FAQs on Change Healthcare cyberattack
The Department of Health and Human Services’ Office for Civil Rights April 19 launched a webpage answering HIPAA-related FAQs about the Change Healthcare…
Headline
Agencies issue ransomware alert, guidance for securely deploying AI
U.S. and European agencies April 18 recommended organizations implement certain best practices to protect against the latest versions of Akira ransomware,…
Headline
AHA urges Congress to reject cybersecurity proposal in HHS budget request
In a statement submitted to the House Energy and Commerce Health Subcommittee for a hearing April 17 on President Biden’s fiscal year 2025 Health and Human…
Headline
HHS Deputy Secretary Palm discusses Change Healthcare attack and future of cybersecurity
Department of Health and Human Services Deputy Secretary Andrea Palm addressed AHA Annual Membership Meeting attendees about the Administration’s work to…
Headline
Representative Guthrie discusses cybersecurity, prior authorizations and telehealth
Rep. Brett Guthrie, R-Ky., today addressed attendees of AHA’s 2024 Annual Membership Meeting and touched on many of the biggest issues in health care:…
Headline
AHA testifies at hearing on health care cybersecurity
Testifying April 16 before a House Energy and Commerce Subcommittee on Health hearing on addressing health care cybersecurity vulnerabilities in the wake of…