The Department of Health and Human Services (HHS) recently released a new ground breaking publication: Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients.
This milestone was the culmination of a collaborative effort between healthcare and cybersecurity leaders to create voluntarily cybersecurity guidelines for healthcare organizations.
“This publication is the result of the collaborative work HHS and its industry partners embarked on more than a year ago – namely, the development of practical, understandable, implementable, industry-led, and consensus-based voluntary cybersecurity guidelines to cost-effectively reduce cybersecurity risks for health care organizations of varying sizes, ranging from local clinics, regional hospital systems, to large health care systems,” wrote Eric Hargan, deputy secretary of HHS.
ISACA GWDC members that work in or performs services for the healthcare industry should take some time to become familiar with this new document. It has the potential to significantly shape how cybersecurity threats and risks are managed to best protect patient data and safety.
You can read the full HHS Press Release for further details.

Jason joined ISACA in 2006 and presently serves as GWDC Past President. He’s served on the Chapter Board of Directors since 2014. Jason is very involved with ISACA Global and some of his volunteering consists of serving on the Chapter Services Working Group, Leadership Development Advisory Council, and contributing significantly to CISA and CISM exam preparation content. Jason has received 40 under 40 Awards from AFCEA International for his contributions to the STEM field and from Leadership Center of Excellence for his leadership in the Washington, D.C. region. Jason is an Associate Partner within IBM’s Cybersecurity and Biometrics Practice. He holds the CISSP-ISSAP, CISA, CISM, and PMP certifications.