The National Institute of Standards and Technology has updated its Security and Privacy Controls for Information Systems and Organizations, a catalog of tools to help organizations manage and respond to security and privacy risks.

“The fifth revision of this widely used framework is a beneficial resource for hospitals and health systems to either be adopted as a framework for combined security and privacy controls, or as a reference guide to inform and benchmark existing security and privacy programs,” said John Riggi, AHA senior advisor for cybersecurity and risk.

Related News Articles

Headline
The National Security Agency April 23 released a report on operational technology systems that includes recommendations for security policies and technical…
Chairperson's File
Public
Cybersecurity and physical threats are unfortunately significant enterprise risks for health care, regardless of size or location. Every hospital, physician…
Headline
The Cybersecurity and Infrastructure Security Agency April 17 released guidance to reduce risks associated with a reported breach of Oracle cloud services.…
Headline
The National Counterintelligence and Security Center, the FBI, and the Defense Counterintelligence and Security Center yesterday released guidance on…
AHA Cyber Intel
While the rate of cyberattacks on hospitals has risen dramatically, the severity of the impacts has also grown exponentially. Let’s look at the state of cyber…
Headline
The House Energy and Commerce Oversight and Investigations Subcommittee April 1 discussed cybersecurity threats in legacy medical devices during a hearing. The…