AHA voices support for health care cybersecurity bill 

Mar 29, 2022 - 03:46 PM
cybersecurity

AHA this week voiced support for the Healthcare Cybersecurity Act (S.3904), legislation that would improve collaboration and coordination between the Cybersecurity and Infrastructure Security Agency and Department of Health and Human Services. The bill also would authorize cybersecurity training and an analysis of cybersecurity risks for the health care and public health sector, with a focus on impacts to rural hospitals, medical devices and cybersecurity workforce shortages. John Riggi, AHA’s national advisor for cybersecurity and risk, was privileged to participate in early discussions that helped inform elements of the bill and bring to light the serious cybersecurity threats and challenges facing the field. 

“Great strides have been made by hospitals and health systems to defend provider networks, secure patient data, preserve health care delivery and, most importantly, protect patient safety,” AHA said in a letter to the bill’s sponsors, Sens. Jacky Rosen, D-Nev., and Bill Cassidy, R-La. “This bill takes first steps towards addressing many of the cybersecurity challenges facing hospitals and health systems. We also support the development of coordinated national defensive measures, an expansion of the cybersecurity workforce, disruption of bad actors that target U.S. critical infrastructure, and the utilization of a ‘whole of government’ approach to increasing risk and consequences for those who commit attacks.”

The Senate Committee on Homeland Security and Governmental Affairs is scheduled to mark up the bill on Wednesday.

Related News Articles

Headline
FBI warns of cyber actors exploiting end-of-life routers
The FBI's Internet Crime Complaint Center released an alert May 7 warning of cyber actors exploiting vulnerabilities in end-of-life routers. Routers dated 2010…
Headline
FBI warns of malicious text, voice-messaging campaign impersonating senior U.S. officials
The FBI’s Internet Criminal Complaint Center May 15 released an alert warning of a malicious text and voice messaging campaign involving impersonators…
Headline
AHA blog — 3 Must-know Cyber and Risk Realities: What’s Ahead for Health Care in 2025 
In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, examines the state of cyber and physical threats in 2025 as…
Headline
Report: Health care had most reported cyberthreats in 2024 
Health care had more cyberthreats last year than any other critical infrastructure industry, according to the FBI's 2024 Internet Crime Report released April…
Headline
NSA report includes recommendations for OT device security
The National Security Agency April 23 released a report on operational technology systems that includes recommendations for security policies and technical…
Chairperson's File
Chair File: Leadership Dialogue — Cybersecurity in Health Care with John Riggi, AHA’s National Advisor for Cybersecurity and Risk
Public
Cybersecurity and physical threats are unfortunately significant enterprise risks for health care, regardless of size or location. Every hospital, physician…