AHA Testifies on Regulatory Burden, Cybersecurity

Jul 18, 2018 - 03:24 PM
cybersecurity-hand-lock-graphic_900x400

The AHA today discussed the need to reduce the regulatory burden on providers to improve patient care during a House Committee on Oversight and Government Reform Subcommittee on Intergovernmental Affairs hearing.
 
“A reduction in administrative burden will enable providers to focus on patients, not paperwork, and reinvest resources in improving care, improving health and reducing costs,” said John Riggi, AHA senior advisor for cybersecurity and risk.
 
Riggi said that “while federal regulation is necessary to ensure that health care patients receive safe, high-quality care, in recent years, clinical staff — doctors, nurses and caregivers — find themselves devoting more time to regulatory compliance, taking them away from patient care. Some of these rules do not improve care, and all of them raise costs.”
 
Specifically, Riggi discussed an AHA report on regulatory burden, which, among other findings, revealed that health systems, hospitals and post-acute care providers must comply with 629 discrete regulatory requirements across nine domains and spend nearly $39 billion a year solely on the administrative activities related to regulatory compliance. In addition, he said, an average-size hospital dedicates 59 full-time equivalents to regulatory compliance, over one-quarter of which are doctors and nurses, pulling clinical staff away from patient care responsibilities.
 
In AHA’s written statement for the hearing, Riggi also discussed the unique cybersecurity challenges confronting the health care sector, and how hospitals and health systems are responding.
 
“Hospitals and health systems have made great strides to defend their networks, secure patient data, preserve the efficient delivery of health care services, and most importantly, protect patient safety,” Riggi said. “However, we cannot do it alone. We need more active support from the government to defend patients from cyber threats … a ‘whole of nation approach’ is what is truly needed.”

Related News Articles

Headline
FBI warns of cyber actors exploiting end-of-life routers
The FBI's Internet Crime Complaint Center released an alert May 7 warning of cyber actors exploiting vulnerabilities in end-of-life routers. Routers dated 2010…
Headline
FBI warns of malicious text, voice-messaging campaign impersonating senior U.S. officials
The FBI’s Internet Criminal Complaint Center May 15 released an alert warning of a malicious text and voice messaging campaign involving impersonators…
Headline
AHA blog — 3 Must-know Cyber and Risk Realities: What’s Ahead for Health Care in 2025 
In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, examines the state of cyber and physical threats in 2025 as…
Headline
Report: Health care had most reported cyberthreats in 2024 
Health care had more cyberthreats last year than any other critical infrastructure industry, according to the FBI's 2024 Internet Crime Report released April…
Headline
AHA makes 100 suggestions to Trump administration on providing regulatory relief 
The AHA May 12 responded to the Office of Management and Budget's April 11 request for information on regulatory relief, making 100 suggestions to the Trump…
Headline
Executive order promotes domestic production of medicines, other executive actions
The Trump administration May 5 issued two executive orders on pharmaceutical manufacturing and life-sciences research. The first executive order, "…