From: Security Management
By Sherry Harowitz
The Health Information Trust Alliance (HITRUST) has released guidelines to help healthcare organizations get a snapshot of their cyberrisk. The new cybersecurity guidance is available for review via HITRUST Central. HITRUST is a group of CISOs representing the largest U.S. healthcare organizations. In February, in connection with the White House Cybersecurity Executive Order for Critical Infrastructure Protection, HITRUST formed a cybersecurity working group, which is charged with developing recommendations to give to the National Instistute of Standards and Technology (NIST), which the White House has charged with developing a cybersecurity framework for critical infrastructure. The newly released guidelines are the first document to come from the working group. Even before the White House began its push for a cybersecurity framework, HITRUST was working on a Common Security Framework (CSF) for the healthcare industry. To that end, it established the HITRUST Cyber Threat Intelligence and Incident Coordination Center (C3) more than a year ago to gather and share cyberthreat intelligence specific to the healthcare industry. C3 “reports a marked increase in the frequency and sophistication of cyber attacks targeted at healthcare organizations,” reports HITRUST.
Leave a Reply