The Health Information Trust Alliance — a nonprofit focused on safeguarding sensitive information and managing risk for providers — uses such a framework, Mr. Nilsson said. The nonprofit is led by a seasoned management team and governed by a board of directors who are leaders from across the healthcare industry.
“HITRUST has designed the security framework that allows you to manage both risk and security in your healthcare organization,” Mr. Nilsson told Becker’s Hospital Review. “[Its] framework rationalizes relevant regulations and standards into a single overarching security framework.”
Having a comprehensive framework, especially one that ties together multiple standards and requirements from HIPAA, the payment card industry and the International Organization for Standardization, can significantly improve an organization’s cybersecurity position. HITRUST also creates this framework based on organization size and system type.
“Having a security framework that meets your organization’s needs will allow you to strengthen your cybersecurity posture,” Mr. Nisson concluded.
If you would like to share your RCM best practices, please email Kelly Gooch at kgooch@beckershealthcare.com to be featured in the “RCM tip of the day” series.
More articles on healthcare finance:
Hospitals are moving to single ratings: Here’s why
Fitch: Minor headwinds coming for US children’s hospitals
Walgreens, CVS, Rite-Aid shares plummet after Amazon buys Pillpack
