H-ISAC Releases CISO Guide for Identity-Centric Data Sharing
Health IT Security
Health-ISAC released new guidance to help CISOs navigate interoperability, patient access, and identity-centric data sharing under the 21st Century Cures Act. New interoperability mandates under the Cures Act require healthcare organizations to implement APIs to promote the digitization of electronic health information (EHI).
“While APIs are the ‘door’ to enabling interoperability of EHR between healthcare organizations, strong identity solutions are the ‘key’ that keeps EHI secure,” the guide explained.
Specifically, the Act depends on APIs that operate on the Fast Healthcare Interoperability and Resources (FHIR) standard. The FHIR standard was developed by nonprofit standards group Health Level 7 (HL7) and was...