Is “Sorry” Good Enough? Insights from UHG’s Change Healthcare Testimony
On Wednesday, May 1, Andrew Witty, CEO of United Health Group (UHG), appeared before two congressional committees to discuss the …
Regulation & Compliance
Read More
Congressional Scrutiny of Healthcare Cyber Risks
On April 16th, healthcare industry leaders gathered in Washington, DC to testify to the Energy and Commerce Health Subcommittee on …
Read More
Charting a Wellness Plan for Healthcare Cybersecurity
The journey to cybersecurity resilience in healthcare is not a solo endeavor. It requires coordination among several pivotal organizations. At …
Read More
How to Successfully Navigate HIPAA Cybersecurity Requirements
In a world where technology evolves faster than we can say “cybersecurity,” one might wonder if the Health Insurance Portability …
Read More
The Evolution and Impact of NIST CSF 2.0
NIST, or the U.S. National Institute of Standards and Technology, is at the forefront of the evolving realm of cybersecurity. …
Read More
How the 405(d) Program and Task Group is Helping Healthcare Security
Healthcare organizations continue to be prime targets for malicious actors. OCR data in a recent Health IT Security article showed …
Read More
How Proposed 2021 HIPAA Changes Will Affect Your Healthcare IT
On January 21, 2021, an important development in cybersecurity news was released. The United States Department of Health and Human …
Read More
Recommendations on NIST Resource Guide
Fortified recently responded to an opportunity from NIST to comment on the utility of NIST Special Publication (SP) 800-66, Revision 1, commonly referred to as the Resource Guide.
Read More
Is Electronic Protected Health Information (ePHI) Getting Outside Your Healthcare Organization?
Under HIPAA regulations, health information or data that can be used to identify an individual patient is categorized as protected …
Read More
Benefits of Continuous HIPAA Analysis
The HIPAA Security Rule Administrative Safeguards includes requirements that covered entities “implement policies and procedures to prevent, detect, contain and …
