HHS Issues Cybersecurity Performance Goals Specific to the Health Care and Public Health Sector
On January 24, 2024, HHS published voluntary Cybersecurity Performance Goals (CPGs) for the health care and public health (HPH) sector to “help healthcare organizations prioritize implementation of high-impact cybersecurity practices.”
https://www.alston.com/en/insights/publications/2024/02/hhs-issues-cybersecurity-performance-goals
Ignore Uncle Sam's 'voluntary' cybersecurity goals for hospitals at your peril
If you are responsible for infosec at a US hospital or other healthcare organization, and you treat the government's new "voluntary" cybersecurity performance goals (CPGs) as, well, voluntary, you're ignoring the writing on the wall.
https://www.theregister.com/2024/02/05/us_voluntary_cybersecurity_goals_hospitals/
HHS proffers cyber performance goals to health systems
Voluntary cybersecurity performance goals can help healthcare organizations establish layered protection and are adaptable, according to U.S. Health and Human Services. The agency's next steps include architecting investments and incentives for healthcare organizations to implement the goals and enforcement standards.
https://www.healthcareitnews.com/news/hhs-proffers-cyber-performance-goals-health-systems
Link to the U.S. Department of Health and Human Services' newly-released Cybersecurity Performance Goals website
https://hphcyber.hhs.gov/performance-goals.html
_____________________________________________
Critical Insight, a cybersecurity firm based in Bremerton, WA, is sponsoring a free webinar about the new goals titled "Implications of the HHS Cybersecurity Performance Goals - Did the Government Go Too Far or Not Far Enough?"
|