Proposed NIST cybersecurity guide incorporates HIPAA Security Rule

Health records

The National Institute of Standards and Technology (NIST) is seeking comment on proposed new cybersecurity guidance intended to help healthcare organizations that fall under the regulatory umbrella of the Health Insurance Portability and Accountability Act’s (HIPAA) Security Rule.

On July 21, NIST published revised Special Publication 800-66, Implementing the [HIPAA] Security Rule: A Cybersecurity Resource Guide,” its first update since the original version was published in 2008.

NIST said it developed the revised guidance, in part, to integrate it with other cybersecurity resources that didn’t exist in 2008, including its Cybersecurity Framework and revisions made to its Security and Privacy Controls (NIST SP 800-53).

lock iconTHIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.