The National Institute of Standards and Technology (NIST) Feb. 12 released a final version of its framework for reducing cybersecurity risks to critical infrastructure, including the health care sector.
Developed in response to an executive order issued by the president last year, the voluntary framework consists of standards, guidelines and practices to promote the protection of critical infrastructure. NIST plans to continue to update the document based on feedback from users, which may be emailed to firstname.lastname@example.org.
For more on the cybersecurity framework, click on: http://tinyurl.com/msjgsde.
NIST also announced an initiative to work with certain sectors, including health care, to develop guidance on how to implement the framework. For more, click on: http://tinyurl.com/lrek97a. The AHA encourages hospitals to use the final framework in developing their risk reduction and management programs. For AHA cybersecurity resources, visit www.aha.org/cybersecurity.