The Biden administration is looking to strengthen healthcare cybersecurity and is planning to unveil new requirements for hospitals, themessenger.com reported Jan. 9.
According to an anonymous official, CMS will require hospitals to implement basic digital security defenses in order to receive federal funding. These requirements include using multifactor authentication and having a program dedicated to fixing software vulnerabilities.
These requirements will take effect before the end of the year, according to the official.
This comes after the HHS released a concept paper Dec. 6 detailing a new cybersecurity strategy aimed at enhancing the security of the healthcare sector.
The four actions the HHS outlined in the paper were publishing voluntary healthcare and public health sector cybersecurity performance goals; providing resources to incentivize and implement cybersecurity practices; implementing an HHS-wide strategy to support greater enforcement and accountability; and expanding and maturing the one-stop shop within HHS for healthcare sector cybersecurity.