Not One—BUT TWO—Public Policy Cheat Sheets on Cybersecurity for Our Members

Not One—BUT TWO—Public Policy Cheat Sheets on Cybersecurity for Our Members

 As a member of the CHIME community, you have access to an abundance of tools and resources to assist you with navigating the intricacies of the digital healthcare landscape so you can lead effectively. When you joined CHIME, you gained access to one significant asset that is always in your corner—CHIME’s Public Policy team.   

One of the most challenging aspects of leadership can be keeping track of new and evolving federal policies to comply with, and CHIME’s Public Policy team is here to help you stay informed and aware! We work tirelessly all year to influence change in Washington as well as keep you in the know on vital legislative and regulatory updates so that you can focus on what’s important - caring for your patients and communities.  

One important law that should be on your radar is the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA). CIRCIA required the Cybersecurity and Infrastructure Security Agency (CISA) to develop and implement regulations requiring covered entities to report covered cyber incidents and ransomware payments to CISA.   

Last month, CISA released their proposed rule which the team has distilled into two cheat sheets for your convenience:   

• CIRCIA Cheat Sheet Brief Version:
• CIRCIA Cheat Sheet Detailed Version:

The comment period for this proposed rule was recently extended for an additional 30 days through July 3, 2024, in response to comments received from the public requesting additional time.      

CHIME will be commenting on this proposed rule and is collecting feedback from members. If you would like to provide input, or if you have any questions on the proposed rule, please contact our team at [email protected] .