Christine Sublett
Christine Sublett - 28 July 2016

HHS Issues Ransomware Guidance

Tags: , , , , , , , , ,

HHS issued Ransomware guidance recently that clarified that a ransomware attack involving ePHI (electronic Protected Health Information) is a HIPAA breach unless the Covered Entity of Business Associate can demonstrate that there is a low probability that the PHI has been compromised. Ransomware is a […]

Read More
LoadingAdd to favorites
Christine Sublett
Christine Sublett - 29 June 2016

OCR Crosswalk Between NIST Cybersecurity Framework and the HIPAA Security Rule

Tags: , , , , , , , ,

Executive Order (EO) 13636, Improving Critical Infrastructure Cybersecurity was issued by President Obama in 2013, and called for the development of a voluntary risk-based cybersecurity framework (CSF) that is “prioritized, flexible, repeatable, performance-based, and cost-effective.” In response, the National Institute of Standards […]

Read More
LoadingAdd to favorites
Christine Sublett
Christine Sublett - 29 June 2016

The NIST Cybersecurity Framework

Tags: , , , , , ,

Executive Order (EO) 13636, Improving Critical Infrastructure Cybersecurity, was issued by President Obama in 2013, and called for the development of a voluntary risk-based cybersecurity framework (CSF) that is “prioritized, flexible, repeatable, performance-based, and cost-effective.” In response, the National Institute of […]

Read More
LoadingAdd to favorites

Christine Sublett
Security as Part of the M & A Due Diligence Process
Christine Sublett
Healthcare Startups Likely on Compliance Hook for GDPR
Christine Sublett
Cybersecurity Opportunities in CMS Interagency Group Plans
Christine Sublett
Health Data Security and Risk: An Overview of What Lies Ahead
Christine Sublett
HHS Healthcare Industry Cybersecurity Task Force Delivers Report to Congress
Christine Sublett
Best Practices for Securely Deploying Connected Medical Devices