HHS Issues Document to Identify Overlap Between NIST Cyber Framework, HIPAA Security Rule

cybersecurityThe Department of Health and Human Services’ office of civil rights has released a crosswalk document in an effort to help healthcare organizations understand the overlap between the Health Insurance Portability and Privacy Act Security Rule and the National Institute of Standards and Technology’s Cybersecurity Framework.

OCR developed the document in collaboration with NIST and the Office of the National Coordinator for Health IT, HHS said Feb. 23.

The document also aims to help healthcare groups identify gaps in their cybersecurity programs and implement measures meant to safeguard electronic health data.

The crosswalk also includes mappings of different categories to other security frameworks such as the Council on Cybersecurity Critical Security Controls and Control Objectives for Information and Related Technology Edition 5.

Those categories include asset management, risk assessment, access control, data security and information protection procedures.

You may also be interested in...

Lt. Gen. Shaun Morris

Lt. Gen. Shaun Morris on AFLCMC’s Push for 5G, Digital Engineering Efforts

 Lt. Gen. Shaun Morris, commander of the Air Force Life Cycle Management Center (AFLCMC), said in a recent address that the center has invested significantly in technologies like 5G to help promote efficiency across military bases. “As an Air Force, I think it is important to capitalize off what we’ve done and not lose sight of these investments,” said Morris.

Leave a Reply

Your email address will not be published. Required fields are marked *