image credit: pixabay
New York State will soon seek public comment on sweeping new cybersecurity regulations for hospitals, including a two-hour window for reporting major breaches. The proposed rules would come with $500 million in requested funding to help the providers step up their security investments to comply with the new requirements.
The draft proposals include requirements for hospitals’ cybersecurity programs, incident response plans and risk assessments; controls, such as the use of multifactor authentication and encryption; and security risk management for third-party-developed software.
Comments are closed.
