Public Health Emergency - Leading a Nation Prepared
In 2015, the United States Congress passed the Cybersecurity Act of 2015 (CSA), which includes Section 405(d), Aligning Health Care Industry Security Approaches. In 2017, HHS convened the CSA 405(d) Task Group, leveraging the Healthcare and Public Health (HPH) Sector Critical Infrastructure Security and Resilience Public-Private Partnership. The Task Group is comprised of a diverse set of over 100 members representing many areas and roles, including cybersecurity, privacy, healthcare practitioners, Health IT organizations, and other subject matter experts.
The Task Group convened six times from May 2017 through March 2018 and produced a draft of the Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients publication.
The draft was then “pretested” with over 120 stakeholders (i.e. practitioners/clinicians/non-IT and Information Security/IT professionals) within the healthcare industry in order to gauge usability, practicality, and scalability. The HICP publication will be updated regularly to keep the information on threats faced by the healthcare industry current and relevant. This public-private partnership is part of the ongoing effort to strengthen the cybersecurity posture of the Healthcare and Public Health (HPH) Sector.
Jackson Health System
Home | Contact Us | Accessibility | Privacy Policies | Disclaimer | HHS Viewers & Players | HHS Plain Language
Assistant Secretary for Preparedness and Response (ASPR), 200 Independence Ave., SW, Washington, DC 20201
U.S. Department of Health and Human Services | USA.gov |
HealthCare.gov in Other Languages