New York State Governor Kathy Hochul has proposed a $500 million boost to healthcare facilities across the state in an effort to create stronger cybersecurity protection.
Proposed as support for new regulations under consideration, the funding is included in the governor’s proposed 2024-25 state budget. Funding would be available to eligible institutions for use in upgrading technology and protecting health systems from cyber threats.
“Our interconnected world demands an interconnected defense against cyberattacks,” Hochul said, “especially in hospitals. »
The proposed regulations would require hospitals to assess internal and external cybersecurity risks and take steps to use both defensive techniques and infrastructure to protect information systems. Prevention remains, as always, the watchword.
When we protect hospitals, we protect patients, said state Health Commissioner Dr. James McDonald. This nationally leading hospital cybersecurity regulatory proposal helps protect critical systems from cyber threats, keeping New York’s hospitals and healthcare facilities safe.
The additional regulations are intended to supplement existing federal safety rules. The Health Insurance Portability and Accountability Act (HIPAA) of 1996 created national standards to protect sensitive patient health information from being disclosed without patients’ consent or knowledge.
According to the Centers for Disease Control, these safeguards still allow the flow of health information necessary to provide and promote high-quality health care.
Currently, health information is found in a number of databases: hospital business partners, health care information centers, limited data sets for research, public health or hospital operations. health care.
Of some interest to any community that has observed the sometimes contradictory behavior displayed by a hospital after a successful cyberattack, Hochuls’ proposed regulations would require response plans for a potential incident, including notification to appropriate parties.
The Hochuls regulations will also require hospitals to test their response plan to ensure patient care continues while systems return to normal operations. Hospitals must anticipate unfortunate circumstances and be prepared to operate offline.
If approved by the Public Health and Health Planning Council (PHHPC), the new regulations would be published in the State Register on December 6, before a 60-day public comment period ending February 5, 2024. hospitals would have a year to come. compliance.
Since last November, six health care facilities in New York State have been affected, including Health Alliance in Kingston, Margaretville Hospital and Mountainside Residential Care Center.
How much patient information the hackers accessed or the ransoms paid to them so far remains unknown. Criminal investigations continue.
Last month, Hochul issued a proclamation designating October as Cybersecurity Awareness Month.
#Governor #spend #million #healthcare #cybersecurity #Hudson #Valley
Image Source : hudsonvalleyone.com