Blog | 24By7Security | compliance (7)

Filter by
Tags
Authors
Show all

Very soon, in May 2023, those requirements will begin appearing in DoD contracts, and are expected to be incorporated into the last contracts by October 2025. CMMC 2.0 implementation will be complete across the defense industrial base.

February, 21 2023

CMMC 2.0 Implementation is Just Around the Corner

DoD Contractors and Subs Need to be Pro-Acting Now

Outsourcing work to third-party vendors is inherently risky, but even more so if you haven’t conducted vendor risk assessments before executing detailed business associate agreements

February, 14 2023

Risky Business: Unmanaged Business Associates

Without vendor risk management, suppliers are one of the most loosely managed assets in healthcare Today, an increasing[…]

HITRUST is dedicated to developing current, relevant safeguards for organizations who have adopted the HITRUST CSF Framework, using the MITRE knowledge base as a primary resource.

February, 7 2023

A Threat-Adaptive Framework for Cybersecurity

What it is, how it works, and why you want it The eagerly anticipated update to the HITRUST CSF Framework was announced[…]

By implementing security best practices, new law (HR 7898) enables healthcare providers to potentially decrease enforcement actions.

January, 31 2023

HIPAA Safe Harbor: H.R. 7898's Impact on Healthcare Organizations

By implementing security best practices, HR 7898 enables healthcare providers to potentially decrease enforcement[…]

The HITRUST CSF offers organizations in numerous industries, including healthcare, a clear and proven path to compliance with the many security regulations applicable to them.

January, 17 2023

HITRUST Update Launching January 2023

HITRUST 2023 Update Delivers Six Important Improvements Plus a Brand New Assessment HITRUST is an information risk[…]

The most comprehensive of the five federal laws—the American Data Privacy and Protection Act (ADPPA)—proposes to preempt laws rendered redundant by provisions of the Act. This has brought the ADPPA to a standstill as the House of Representatives considers next steps.

January, 3 2023

Will New Data Privacy Laws Succeed Where Others Have Failed?

Virtually all organizations are governed by at least one privacy law, and yet compliance failures continue to[…]

HITRUST for healthcare offers the choice of a readiness assessment or a validation assessment. Following this decision, organizations can choose one of three levels of HITRUST assessment based on their individual needs and objectives.

December, 6 2022

To HITRUST … or Not to HITRUST

Here’s help making the right decision for your healthcare organization Whether you operate a large hospital or a small[…]

California, Colorado, Connecticut, Utah, and Virginia have enacted comprehensive state laws to take effect as early as January 1, 2023. Eleven other states have limited privacy laws in place.

November, 29 2022

New State Privacy Laws Take Effect in 2023

Five states have enacted new regulations or amended laws to further protect the privacy of their residents’ personal[…]

In July, August, and September of 2022, the OCR published four press releases detailing misbehavior that cost 16 errant healthcare providers more than $1.9 Million in HIPAA violation penalties.

November, 22 2022

HHS OCR Spent Summer Imposing HIPAA Violation Penalties on Healthcare Providers Large and Small

$1.9 Million in fines, plus mandatory corrective actions, imposed against 16 HIPAA violators in just three months A fun[…]

The FBI, CISA & HHS Joint Alert published in October 2022 provides actionable guidance for safeguarding your organization from Daixin and other ransomware rings.

November, 15 2022

Healthcare Sector Warned of New Ransomware Attacks in Joint Alert from FBI, CISA & HHS

Daixin Ransomware Group Actively Targeting Public and Private Healthcare Organizations with Data Theft, Ransom Demands[…]

Cybersecurity and Compliance Blog

Ranked in Top 5 CISO Blogs 2022!