Health Industry Cybersecurity Practices Publication – Peer Reviews Needed
Call for Peer Reviews
Health-ISAC members may be interested in helping to review the update to the Health Industry Cybersecurity Practices (HICP) publication.
Background
In 2017 HHS and Industry convened under the direction of Section 405(d) of the Cybersecurity Act of 2015 to develop guidance for improving cybersecurity practices in the healthcare sector. A task group of more than 250 volunteers was formed, and in 2018 became a formal task group of the Health Sector Coordinating Council (HSCC) Joint Cybersecurity Working Group. This task group has been co-chaired by Erik Decker, CISO for Intermountain Healthcare, and Julie Chua, Director of Governance Risk and Compliance in the HHS Office of the CIO. The 405(d) Task Group worked diligently for 18 months to produce the HICP publication.
The 405(d) Task Group continues its charge and has provided a draft version 2 update of HICP. As we did in the first release, we would like this draft version to be peer reviewed across industry and across the country. This is where you come in. HHS is looking to form several ‘virtual focus groups’ to review the latest HICP draft and provide critical feedback. They are looking to break these focus groups into two sections: clinical and administrative staff, and IT and cyber staff.
Today’s ask
The recruitment flyer below contains details on how members can participate. Focus groups will be organized between September 20 and October 1.
- Related Resources & News
- Health-ISAC Hacking Healthcare 10-15-2024
- Health-ISAC Welcomes Booz Allen Hamilton to the Ambassador Program
- Health-ISAC Hacking Healthcare 10-9-2024
- Monthly Newsletter – October 2024
- Health ISAC leads effort to transform SBOM information sharing under CISA-facilitated community work
- CyberEdBoard Insights: Phil Englert and Errol Weiss
- Health-ISAC Hacking Healthcare 9-10-2024
- Strengthening Healthcare Cybersecurity: Lessons from Recent Supplier Attacks
- Specialize in Securing Critical Infrastructure
- How AI is transforming cybersecurity, on defense and offense