Global Edition
Privacy & Security

How to implement healthcare cyber insurance

The HHS 405(d) program has new resources to help small to large healthcare organizations navigate what's important when implementing cyber insurance.
By Andrea Fox
December 21, 2023
03:43 PM

Photo: luis gomes/Pexels

Two new one-pagers from U.S. Health and Human Services aim to support healthcare organizations in taking steps to implement cyber insurance best practices today.

WHY IT MATTERS

"Cyber insurance can help protect your organization from excessive costs that can occur in the event of a cyber attack," according to the 405(d) program in its announcement on Dec. 14.

The resources – one for smaller organizations and another for medium and large ones – explain why cyber insurance is an ongoing partnership between healthcare organizations and their insurers.

With them, health IT specialists can learn about the steps they need to take to continually improve their organizations' security, including how to think about their duty to defend and incident response planning.

THE LARGER TREND

The HHS 405(d) Program was created as a provision of the Cybersecurity Act of 2015, and the task group was initially convened with 150 individuals from the government and the healthcare industry.

More recently, the Cybersecurity and Infrastructure Security Agency and the Department of Health and Human Services released the Cybersecurity Toolkit for Healthcare and Public Health. 

With the considerable cybersecurity challenges of the healthcare and public health sector system, government and industry seek to shore up gaps in resources and cyber capabilities. Since 2015, the conversation has moved from if a healthcare organization is attacked to when.

"We have seen a significant rise in the number and severity of cyber attacks against hospitals and health systems in the last few years," added HHS Deputy Secretary Andrea Palm.

"The more they happen and the longer they last, the more expensive and dangerous they become," she said.

John Menefee, cyber risk product manager at Travelers Bond and Specialty Insurance, told Healthcare IT News in June that insurance carriers are getting better at helping healthcare organizations protect their infrastructure before threat actors strike.

ON THE RECORD

"If your organization becomes the victim of a cyber attack, cyber insurance can provide your organization with access to third-party breach specialists including forensics, independent legal counsel working on your behalf and possible reimbursement of loss of business coverage or revenue," 405(d) said in the new resource.

Andrea Fox is senior editor of Healthcare IT News.
Email: afox@himss.org
Healthcare IT News is a HIMSS Media publication.

Topics: 
Government & Policy, Privacy & Security

More regional news

A doctor looking for patient data on a desktop computer

First LG CNS AI cooperation in South Korea and more briefs

By
Adam Ang
December 22, 2023
Nurse on tablet

AI value-based care platform buys division of data analytics company Arcadia

By
Jessica Hagen
December 21, 2023
Geisinger and healthcare at home

At Geisinger, DME ordering automation pays off with big dividends

By
Bill Siwicki
December 21, 2023
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Geisinger and healthcare at home
Remote patient monitoring
At Geisinger, DME ordering automation pays off with big dividends

Most Read

DHA taps Amwell, Leidos for 'Digital First' initiative
WebMD Ignite collaborates on data privacy in omnichannel outreach
Observing tomorrow’s cyber criminals with the global standard for centralized log management
CISA, HHS and HSCC release healthcare cybersecurity toolkit
The current state of Dubai’s healthcare digital transformation journey
Tufts Medical Center to pilot nutrition screening in EHR

Research

White Papers

More Whitepapers

Artificial Intelligence
Analytics
Precision Medicine

Webinars

More Webinars

Analytics
Analytics
Privacy & Security

Video

Anne Snowdon at HIMSS_ Doctor looking at brain scan on table Photo: katleho Seisa/Getty Images
Perspective: Scaling AI projects from pilot inspiration to lasting success
Steven Ullman at the University of Miami_ Telehealth on laptop photo: David Espejo/Getty Images
Telehealth sees a dip as patients pull back on virtual care
Robert Havasy at HIMSS_Doctor looking at brain scan on table Photo: katleho Seisa/Getty Images
Looking back at the HIMSS AI in Healthcare Forum
Naomi Fried at PharmStars_Business colleagues at a table by LaylaBird/Vetta/Getty Images
A new cohort graduates from PharmStars

More Stories

Maxime Vermeir of ABBYY on AI
2024 outlook: AI focus will shift to specialized machine learning
HIPAA Breach Notification Rule
How far will FTC expand Health Breach Notification Rule enforcement?
Naomi Fried at PharmStars_Business colleagues at a table by LaylaBird/Vetta/Getty Images
A new cohort graduates from PharmStars
A doctor relaying a patient's heart X-ray findings via teleconsultation
Japanese demand for digital hospital tech starting to...
Christophe Morvan and Lawrence Giesen of Drake Star on telemedicine
Telemedicine M&A trends moving into 2024
Panelists at the HIMSS AI in Healthcare Forum in San Diego
AI scaling and sustainability – tips for success from providers, payers and vendors
Dr. Jesse Ehrenfeld, president of AMA Background-katleho Seisa/Getty Images
AI liabilities and regulations concern physicians
A nurse checking a patient's file on a laptop in the hospital corridor
Data privacy still a top concern for digitalisation in...