The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency proposed a new rule March 27. The rule states that covered entities, including hospitals and health systems, must “report to CISA within certain prescribed timeframes any covered cyber incidents, ransom payments made in response to a ransomware attack, and any substantial new or different information discovered related to a previously submitted report.”
The new rule, according to the proposal, aims to enhance CISA’s ability to identify trends and track cyber threat activity.
CISA is welcoming feedback on the proposal for 60 days following its publication in the April 4 edition of the Federal Register.
At the Becker's 11th Annual IT + Revenue Cycle Conference: The Future of AI & Digital Health, taking place September 14–17 in Chicago, healthcare executives and digital leaders from across the country will come together to explore how AI, interoperability, cybersecurity, and revenue cycle innovation are transforming care delivery, strengthening financial performance, and driving the next era of digital health. Apply for complimentary registration now.
