News & Insights

HHS releases voluntary cybersecurity practices for the health industry

Washington Connection

HHS releases voluntary cybersecurity practices for the health industry


HHS released Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients, which aims to raise awareness of cybersecurity issues and offers advice on how physician practices can better protect themselves against cyberattacks. MGMA staff helped develop the resources and MGMA members provided input on early drafts. The publication consists of four parts:
  • The main document explores the five most relevant cybersecurity threats and highlights 10 actions to help mitigate these threats;
  • Volume 1 discusses cybersecurity practices for small healthcare organizations;
  • Volume 2 discusses cybersecurity practices for medium and large healthcare organizations; and 
  • Resources and templates that include links to resources to assist practices in assessing their cyber hygiene and developing appropriate policies and procedures. 
Access additional MGMA and HHS HIPAA Privacy and Security resources here
Loading...