How to Implement a Cyber Incident Response Plan for Healthcare
Healthcare IT Security
Creating a comprehensive cyber incident response plan can help healthcare organizations maintain reputation and patient safety.
Having a cyber incident response plan in healthcare is required under HIPAA, but that does not mean that every healthcare organization actually has a comprehensive and actionable plan tailored specifically to their organization.
When organizations work together cross-functionally to develop and regularly practice a thorough incident response plan, they can mitigate risk and ensure that the plan is functional and applicable to all parties.
“When you don’t have a comprehensive plan, there’s a good chance that you’ll lose track of incidents or that you’ll react inappropriately to an incident,” Nathan Salminen, senior associate at Hogan Lovells, explained in an interview with HealthITSecurity.