Healthcare CIOs and CISOs Brace for Major HIPAA Security Rule Changes

January 12, 2025Source: Forbes

Found this useful? Share it with your network

Healthcare CIOs and CISOs are analyzing a new proposal from HHS's Office for Civil Rights to update the HIPAA Security Rule with an emphasis on enhancing cybersecurity for electronic protected health information (ePHI). The proposed changes include stricter documentation requirements, such as maintaining a detailed inventory of technology assets and mapping ePHI flow, which organizations must update annually or after major operational shifts. This may pose challenges for smaller healthcare facilities that lack technical resources, leading some to consider external consulting for compliance. Additionally, organizations will be required to restore critical electronic systems within 72 hours following a loss, prompting necessary revisions to disaster recovery plans and budget allocations.

Read Full Article

Opens on Forbes

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News