The House Subcommittee on Oversight and Investigations evaluated HHS' role in healthcare cybersecurity during a June 8 hearing.
The committee discussed two reports HHS submitted to Congress in response to the Cybersecurity Information Sharing Act of 2015: a 2014 report assessing the department's efforts to enhance cybersecurity and a more recent report, released June 5, recommending steps to improve cybersecurity in the industry.
Chairman Tim Murphy cited the WannaCry ransomware attack, which took place in late May, during his opening statement. He called the incident "an important test of HHS' response to a potentially serious event" and said "thus far, the feedback has been positive."
Mr. Murphy emphasized every participant in the healthcare sector must commit to strict cybersecurity standards. "This is no longer just about protecting personal information or patient data," he explained. "This is about patient safety."
In its written testimony, HHS reiterated the importance of six imperatives, as outlined in its June 5 cybersecurity improvement report. "The department is committed to a safe, secure and resilient cyber environment that promotes cybersecurity knowledge, innovation, confidentiality and privacy in collaboration with public, private and international partners," the HHS statement reads.
More articles on health IT:
Social Security Administration taps IRS exec for CIO
Ransomware distribution drops 44.9% in Q1, PhishMe finds
Physician viewpoint: WannaCry's hit to NHS is a 'wake-up call'