https://www.healthcareitnews.com/news/healthcare-organizations-lagging-behind-nist-cybersecurity-framework-hipaa-guidance
By Mike Miliard
Healthcare IT News
April 11, 2019
Despite some halting progress with cybersecurity readiness, healthcare is still
lacking in many key areas, according to a new progress report from the
consultancy CynergisTek.
In particular, the study took a look at how healthcare organizations are
stacking up with the advice and best practices of the NIST Cybersecurity
Framework, as well as the HIPAA privacy and security rules. The findings, say
CynergisTek researchers, are "sobering."
WHY IT MATTERS
To start with, the report – based on the results of assessments, audits and
reviews performed by CynergisTek at some 600 healthcare organizations and
business associates – found that, from the perspective of NIST CSF most of
those orgs surveyed were still performing "well below where we would like to
see them," said CynergisTek CEO Mac McMillan in the report.
It found an average 47 percent conformance with NIST CSF controls and an
average 72 percent compliance with the HIPAA Security Rule.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
