NIST issues cyber risk management tool; HHS task force seeks input

Sep 15, 2016 - 04:15 PM

The National Institute of Standards and Technology today released the Baldridge Cybersecurity Excellence Builder, a draft tool to help organizations assess how effectively they use the NIST Cybersecurity Framework to manage cybersecurity risk. According to the agency, the tool blends the organizational performance evaluation strategies of the Baldrige Performance Excellence Program with the risk management mechanisms of the Cybersecurity Framework, allowing organizations to maximize the framework’s value and manage all areas affected by cybersecurity as a unified whole. NIST will accept comments on the draft tool until Dec. 15 at baldrigecybersecurity@nist.gov. Earlier this week, the Department of Health and Human Services’ Health Care Industry Cybersecurity Task Force asked the health care, patient and technology communities to share their thoughts on how best to protect the health care system from cybersecurity threats. “We will be listening to any responses that you make on this blog post, we will be hosting a discussion on Reddit soon, and we will be listening to tweets tagged with the hashtag of #healthcybersecurity,” the panel said in a post at The Health Care Blog. For additional hospital and health system resources to reduce and manage cyber risks, visit www.aha.org/cybersecurity.

Related News Articles

Headline
Abbott updating pacemaker firmware to correct cybersecurity vulnerabilities
Abbott is updating the firmware for all St. Jude Medical radio frequency-enabled implantable pacemaker devices to address cybersecurity vulnerabilities that…
Headline
Organizations alerted to imaging, printer cyber vulnerabilities
Siemens has identified four vulnerabilities in molecular imaging products running Windows 7 that could allow an attacker to remotely execute arbitrary code,…
Headline
DHS issues update on federal efforts to strengthen cybersecurity
The Department of Homeland Security Friday released an initial update on efforts to strengthen the cybersecurity of federal networks and critical…
Headline
HHS issues update on ransomware attack
The Department of Health and Human Services yesterday issued an update on the new and evolving cyberattack using a variant of ransomware, which has hit…
Headline
Ransomware attack hits some U.S. hospitals
A new and evolving cyberattack using a variant of ransomware has hit some hospitals and a pharmaceutical company in the United States, as well as businesses in…
Headline
HHS issues alert on Microsoft cyber vulnerabilities, 'Hidden Cobra' threat
The Department of Health and Human Services last week alerted the health care sector to multiple vulnerabilities with Microsoft products and a threat by cyber…