Comment Now: Draft NIST SP 1800-30, Securing Telehealth Remote Patient Monitoring Ecosystem

New Healthcare Cybersecurity Guide Available, NIST SP 1800-30, Securing Telehealth Remote Patient Monitoring Ecosystem

The National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) is pleased to announce the publication of the draft NIST Special Publication (SP) 1800-30: Securing Telehealth Remote Patient Monitoring Ecosystem Practice Guide.

The public comment period is open now through December 18^th, 2020. We welcome your comments and feedback.

What’s this guide about?

Increasingly, healthcare delivery organizations (HDOs) incorporate telehealth and remote patient monitoring (RPM) as part of a patient’s care regimen. RPM systems capture patient biometric data over a prolonged duration. They may offer convenience and may be cost effective for patients and HDOs. These benefits promote increased adoption rates. Without adequate privacy and cybersecurity measures, however, unauthorized individuals may expose sensitive data or disrupt patient monitoring services.

The NCCoE performed a risk assessment on the telehealth RPM ecosystem, leveraging the NIST Cybersecurity Framework, NIST Privacy Framework, and other relevant guidance to develop a reference architecture. The reference architecture demonstrates how HDOs may use standards-based approaches and commercially available cybersecurity technologies to implement privacy and cybersecurity controls enhancing the resiliency of the telehealth RPM ecosystem.

Share Your Expertise

Download the draft practice guide today. The comment period is open now through December 18^th, 2020. Submit comments online or via email to hit_nccoe@nist.gov. We will use the feedback from the public comment period to strengthen the guide.