Navigating the Evolving Cyber Regulatory Environment

With the recent announcement of proposed changes to the HIPAA Security Rule, the U.S. Department Health and Human Services (HHS) has signaled a desire to strengthen the cybersecurity practices of regulated entities by updating the Rule’s standards to better address ever-increasing cybersecurity threats to the healthcare sector.

The proposed changes to the HIPAA Security Rule follow the introduction of Cybersecurity Performance Goals (CPGs) which are intended to help healthcare organizations prioritize the implementation of high-impact cybersecurity practices. The CPGs are informed by select references to the 405(d) Health Industry Cybersecurity Practices, the NIST Cybersecurity Framework, the NIST Special Publication 800-53rev5 Controls, and the 2023 Hospital Cyber Resiliency Landscape Analysis.

How should healthcare organizations be thinking about CPGs relative to HIPAA and what steps should you take to ensure your organization is in alignment with where industry requirements are headed? During this presentation, Clearwater experts will break down the latest from HHS and other regulators and help you chart an effective course.