The Department of Health and Human Services has released a four-volume document that outlines 10 industry practices that health care organizations can implement to counter cyber threats.
HHS said Friday it collaborated with industry stakeholders through a public-private partnership to come up with the publication “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients.”
The primary document includes statistics and real-life scenarios that demonstrate the impact of cyber attacks on patient care and financial sector.
The publication’s first technical volume tackles cyber practices for small health organizations and the second volume deals with practices that large and medium institutions can adopt to address vulnerabilities.
The final volume offers templates and resources that could be used by organizations to evaluate and build up their cybersecurity posture.
HHS and industry worked on the publication in accordance with Section 405(d) of the Cybersecurity Act of 2015.