N.Y. hospitals face stiff cybersecurity requirements under proposed rules
By 
Adrianne Appel2023-11-15T21:09:00
New York hospitals would be required to have a cybersecurity program that includes regular cyber risk assessments under newly proposed regulations.
The proposed rules, which would require the reporting of material cyber incidents within two hours, are designed to strengthen the cybersecurity of hospitals and their networks, said New York Gov. Kathy Hochul in a press release Monday.
Complying with the proposed rules would initially cost hospitals tens of thousands or tens of millions of dollars, according to the draft rules, which noted program maturity as a dictating factor. Hospitals would be allowed to subcontract for cybersecurity services.
Related articles
-
News BriefHHS: New cybersecurity regs on the way for hospitals
Hospitals can soon expect to see new draft cybersecurity regulations and benchmarking goals, according to the Department of Health and Human Services.
-
PremiumN.Y. law to pose hurdle for RIA’s off-channel comms supervision efforts
A New York state law that takes effect next year will make it more difficult for registered investment advisers in the state to conduct proactive testing for violations of their firms’ off-channel communication policies.
-
News BriefAmended N.Y. cyber regs up pressure on financial firms to combat risks
New York will require financial institutions to conduct risk assessments more often and improve governance under a broad update to the state’s cybersecurity regulations.
More from Regulatory Policy
-
ArticleWhat is AI washing and why companies need to stop exaggerating their AI prowess
The buzz around generative AI has reached fever pitch over the past few years—to such an extent that it’s practically a death knell for any company to say it’s not investing massively in gen AI to transform their business. There’s only one problem: many companies are either being misleading or ...
-
News BriefApple, Google face compliance crossroads as states push digital safeguards
A new law in Texas will go into effect next January that requires Apple and Google to verify the age of their app store users. This marks another piece of legislation from the state level intended to protect children, and the second such law specifically from Texas to limit children’s ...
-
Basic PageConsumer electronic supply chain at risk, FCC says in proposing new rules
Thousands of computers and other consumer electronic devices imported into the U.S. that were certified as safe by foreign laboratories have been identified as having links to the Chinese government or military, Brendan Carr, chair of the Federal Communications Commission, said Thursday in announcing an order to close the security ...