HHS Top 10 Cybersecurity Best Practice Recommendations
small, medium, and large organizations
Published: March 21, 2019
1 CE – Privacy and Security
The Cybersecurity Act of 2015 (CSA) (Public Law 114-113) establishes a trusted platform and tighter partnership between the United States (U.S.) government and the private sector, recognizing that our critical infrastructure, economic solvency, and personal safety has become intertwined with our digital technologies. Section 405 (d) of CSA also calls for “Aligning Health Care Industry Security Approaches.” It is with this imperative that industry and government came together under the auspice of the 405(d) Task Group, starting in May 2017. The Task Group focused on building a set of voluntary, consensus-based principles and best practices to ensure cybersecurity in the Health Sector.This group is comprised of HHS, DHS, FDA, NIST, Healthcare Industry Cybersecurity Task Force, healthcare providers, medical device manufacturers, private corporations and cybersecurity experts. All efforts are coordinated by the Health and Public Health Sector Coordinating Council’s Joint Cybersecurity Workgroup (HPH-SCC-JCSW). This group, under the direction of HHS, has assessed our healthcare industry’s most impactful cybersecurity threat vectors, our areas of vulnerability, prioritized impact and created a shortlist of the mitigation strategies for a broad range of organizations within the industry. This document is currently in draft format and cannot be released to the general public. We are currently conducting focus group reviews and it is scheduled for release in the first quarter of 2019. This presentation will review the targeted voluntary recommendations produced by our Joint Cybersecurity Workgroup. Introduce Framework terms to start educating the health sector professionals on important and generally-accepted cybersecurity terms. The attendees will leave with an understanding of our industry’s primary cybersecurity risks and the ability to tailor those recommended best practice mitigation strategies to their own unique organization. We will answer the question, “ How can I adopt cybersecurity best practices into my organization?”
Ty Greenhalgh, HCISPP
William Taylor Greenhalgh, III (Ty) has been dedicated to the healthcare information technology and information management industry for over 30 years, He is an ISC2 certified Healthcare Information Security and Privacy Practitioner (HCISPP) and Cybersecurity Officer. His experience has leveraged advanced disruptive technology solutions to assist healthcare organizations in overcoming seemingly insurmountable challenges. Ty is an active member in several groups and associations; Healthcare and Public Health Sector Coordinating Counsel’s Joint Cybersecurity Workgroup, the National Initiative for Cybersecurity Education (NICE) Workforce Development Workgroup, the North Carolina Health Information and Communications Alliance (NCHICA) Biomedical Taskforce. While employed with 3M Health Information Systems for over 25 years, he worked in a variety of capacities supporting the advancement of disruptive health information management technologies, achieved landmark results, the highest performance evaluation reviews possible and numerous awards. A early pioneer of the EMR, the Henry Ford Health System awarded the “Most Innovative Technology of the Year” to Ty, in conjunction with the American Health Information Management Association, for ground breaking work developing one of the first Electronic Medical Record systems to contain automated HIM workflow and electronic signature.
Access instructions to the recording will be provided within 2 business days following receipt of payment.
AHIMA Members: $15
This webinar will be available on-demand. This means that webinar will be recorded and sent out to all paid registrants, even if they register after the live webinar has occurred, or if they cannot make the time and date set for the live webinar.
No refunds, as the event is recorded and playback will be available for at least 90 days from the event date.
When you register online, you will have the option to pay by mail with a check or pay online with a credit card (AMEX, MasterCard, Visa, or Discover).
If you are paying by check, select “mail a check” under payment options. You will later see instructions to print the confirmation page and mail your payment to KnowledgeConnex. The mailing address will be on the invoice. Make your check payable to KnowledgeConnex and include the confirmation/order number with the check. Checks that do not reference the confirmation number will be returned to you and will not be applied to the registration.