AHA Responds to CISA Proposed Rule on Cyber Incident Reporting Requirements

July 5, 2024Source: aha.org

Found this useful? Share it with your network

The American Hospital Association (AHA) has provided feedback to the Cybersecurity and Infrastructure Security Agency (CISA) regarding its proposed Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) rule. While acknowledging the importance of incident reporting to understand and mitigate cyber threats, the AHA raises concerns about the redundancy, complexity, and timing of these requirements, which could burden hospitals during critical times. They advise CISA to harmonize its reporting rules with existing regulations, ensure data anonymity, and simplify the reporting process. Additionally, the AHA emphasizes the need for clearer definitions, more inclusive criteria for all health care-related entities, and a reduction of the operational burden on hospitals, suggesting that penalties on victim organizations be reconsidered in favor of collaborative approaches.

Read Full Article

Opens on aha.org

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News