Healthcare Cybersecurity: Integrate or Fail

Cybersecurity
share Share

A standards body has said that in order for healthcare IT security to succeed it has to align with the overall activities of an organisation if it has any chance of being effective.

The chief of the Baldrige PerformanceExcellence Program just launched under the umbrella of The National Institute of Standards and Technology (NIST), says that cybersecurity systems cannot operate in isolation if they have any chance of succeeding.

"If your cybersecurity operations and approaches aren't integrated into your larger strategy, aren't integrated into your workforce development efforts, aren't integrated into the results of the things you track for your organisation and overall performance, then they're not likely to be effective," says Robert Fangmeyer, director of the programme.

The Baldridge Performance Excellence Program is a self-assessment tool that has been devised to help organisations upgrade their IT security capacity, set and achieve sustainable results.

 
See Also:
Patient Safety at Risk: Poor IT Security


NIST says that the Baldrige Cybersecurity Excellence Builder is critical for:

 

  • Identifying cybersecurity-related activities that are crucial to business strategy and service delivery;
  • Prioritising investments for cybersecurity risk management;
  • Assessment of how effective and efficient cybersecurity an organsiaiton’s standards, guidelines and practices are;
  • Evaluation of cybersecurity results;
  • Identification of priority areas for improvement.

 

The tool is adaptable to each organisation's needs rather than taking a one-size-fits-all approach. It hones in on specific characteristics and strategies connected to cybersecurity.

 

The tool highlights areas such as how cybersecurity is deployed in leadership, strategy, customers, workforce and operations in addition to results in each of these sections.

Its assessment rubric helps organisations ascertain what maturity level their cybersecurity level is at: reactive, early, mature or a role model.

 

Source: HealthcareInfoSecurity

Image Credit: CybersecurityCaucus

 

Published on : Mon, 19 Sep 2016


Print as PDF

Related Articles
Cybersecurity

  Next week, the Healthcare Information and Management Systems Society (HIMSS) will launch a new, interactive Cybersecurity Hub.... Read more

  The Office of the National Coordinator for Health Information Technology (ONC) has announced its final rule codifying modifications... Read more

Cybersecurity

  According to a report on Health Data Management the 2016 IBM X-Force Cyber Security Intelligence Index, the healthcare sector... Read more

NIST Baldridge Performance Excellence Program HIT cybersecurity A new assessment tool helps organisations gauge their cybersecurity levels

No comment


Please login to leave a comment...