New Cybersecurity Resource Lists Information-Sharing Organizations
By Theresa Meadows, SVP & CIO of Cook Children’s Health Care System
In 2017, the Health Care Cybersecurity Task Force listed six high-level imperatives along with recommendations and action items to help harden cybersecurity across the healthcare industry. The task force, which I co-chaired along with the Centers for Medicare and Medicaid Services (CMS) Chief Information Security Officer Emery Csulak, offered this as our sixth imperative: “improve information sharing of industry threats, risks, and mitigation.” We noted that the Cybersecurity Act of 2015 supported an information sharing partnership between the federal government and the private sector.
In September, the Healthcare and Public Health Sector Coordinating Council addressed that imperative with the release of the Health Industry Cybersecurity Matrix of Information Sharing Organizations (HIC-MISO). The HIC-MISO is a guide that identifies the most widely known information-sharing organizations and their key services. It is designed to help health providers and companies navigate the many different options. It includes a short list of steps an organization can take to incorporate information sharing into its cybersecurity practices.
The HIC-MISO is available here. This is the fourth resource the council has made available this year. The others are:
- Health Industry Cybersecurity Practices
- Medical Device and Health I.T. Joint Security Plan
- Health Industry Cybersecurity Workforce Development Guide
You can learn more about the Healthcare and Public Health Sector Coordinating Council and the Joint Cyber Security Working Group here. If you want to get involved in federal working groups or task forces, email CHIME’s policy team at [email protected].