Censinet Launches New Cybersecurity Service Exclusively for American Hospital Association Members
Post Summary
A cybersecurity service exclusively for AHA members that automates the implementation of Health Industry Cybersecurity Practices (HICP). Helps healthcare organizations protect patient safety, operations, and data from the top five cybersecurity threats. Provides workflows, compliance tools, benchmarking, and reporting to streamline HICP adoption.
Freely available to all AHA members, regardless of organization size or budget. Automates HICP self-assessments and generates reports for compliance with PL 116-321. Offers peer benchmarking to compare cybersecurity program insights with other organizations. Reduces cyber risks while demonstrating recognized cybersecurity practices during audits or incidents.
HICP-based questionnaires tailored to organization size. Automated tracking of findings, remediations, and evidence capture. Executive dashboards for cyber posture and HICP coverage insights. Reporting for HHS, OCR, and cyber insurance carriers.
HICP provides practical, industry-led guidelines to reduce cybersecurity risks for healthcare organizations of all sizes. Compliance with HICP demonstrates recognized security practices, which can reduce enforcement fines and audit periods under PL 116-321. Focuses on addressing the top five cybersecurity threats in healthcare with ten actionable practices.
AHA members can access the service for free by visiting Censinet’s website and signing up for the platform.
Partnership Makes Cloud-based Support for Health Industry Cybersecurity Practices (HICP) with Benchmarking Freely Available to AHA Members
BOSTON, MASSACHUSETTS, UNITED STATES, September 27, 2022 /EINPresswire.com/ – Censinet, a leading provider of risk management solutions for healthcare, today announced a new Cybersecurity Service exclusively available to AHA members designed to help healthcare delivery organizations (HDOs) protect patient safety, operations, and data from healthcare’s top five cybersecurity threats. Delivered as Censinet RiskOpsTM for HICP, the solution streamlines and automates implementation of Health Industry Cybersecurity Practices (HICP) with an easy-to-use and powerful workflow, compliance, reporting, and benchmarking solution. With Censinet RiskOpsTM for HICP, AHA member organizations can demonstrate that they have adopted strong “recognized cybersecurity practices” in the event of a security incident and an OCR audit.
“Censinet and AHA both support the goal of enabling the healthcare field with the means to protect patient safety and care delivery from cyber threats, regardless of size or stature,” stated Ed Gaudet, CEO and Founder of Censinet. “This new offering gives all providers – physician practices, rural centers, community hospitals, ambulatory clinics, and post-acute care facilities – the ability to easily and affordably reduce cyber risk with the appropriate level of cyber hygiene and controls.”
“The Censinet offering makes it easier for our members, regardless of size or budget, to deploy HICP and reduce the cyber risks that threaten patient safety and care delivery.”
— John Riggi, national advisor for cybersecurity and risk at the AHA
“We’re excited to support Censinet, an AHA Preferred Cybersecurity Service Provider, in providing this new offering for our membership,” said John Riggi, national advisor for cybersecurity and risk at the AHA. “This offering makes it easier for our members, regardless of size or budget, to deploy HICP and reduce the cyber risks that threaten patient safety and care delivery.”
The publication of the HHS 405(d) HICP in 2019 outlined a healthcare-specific approach to cybersecurity. Created in partnership with public and private organizations across the healthcare industry, HICP provides “practical, understandable, implementable, industry-led, and consensus-based voluntary cybersecurity guidelines to cost-effectively reduce cybersecurity risks” for “health care organizations of varying sizes.” To achieve this, HICP focuses on the five most prevalent cybersecurity threats and ten cybersecurity practices that address those threats.
On January 5, 2021, Congress passed Public Law 116-321 which amended the Health Information Technology for Economic and Clinical Health Act to require the Secretary of Health and Human Services to consider certain recognized security practices of covered entities and business associates such as NIST Cybersecurity Framework and HICP when making certain determinations regarding enforcement fines, corrective actions, or length of audit period. To comply with PL 116-321, HDO’s must have “adequately demonstrated that it had, for not less than the previous 12 months, recognized security practices in place” in the event of a cybersecurity incident.
Censinet RiskOps™ for HICP delivers workflows that guide healthcare organizations through an internal self-assessment that maps directly to the 405(d) HICP documentation. It automatically generates a report that shows the implementation and coverage of HICP, and support of PL 116-321, over time. Key capabilities include:
- HICP-based questionnaires aligned to organization size
- Automated generation and tracking of findings and remediations
- Evidence capture to demonstrate best practice adoption
- Report generation for Department of Health and Human Services (HHS), Office for Civil Rights (OCR), and cyber insurance carriers
- Assessment and reporting segmentation for evaluating regional or practice area risk exposure
- Executive dashboard that reports on overall cyber posture and HICP coverage
- Peer benchmarking of HICP coverage and cybersecurity program insights
Censinet is an American Hospital Association Preferred Cybersecurity Service Provider for Cyber Firm Risk Management and Information Governance and Cyber Risk Assessment, Privacy and HIPAA Compliance.
Availability
Censinet RiskOps for HICP is freely available now for all AHA members. For more information, please visit https://www.censinet.com/riskops-platform/hicp. To receive free access, sign up at: https://www.censinet.com/censinet-riskops-for-hicp-demo-request/.
About Censinet
Censinet enables healthcare organizations to take risk out of their business with Censinet RiskOpsTM, the first and only cloud-based exchange that integrates and consolidates enterprise risk management and operations capabilities across critical clinical and business areas. Censinet transforms healthcare risk by increasing productivity and operational effectiveness while eliminating risks to care delivery, data privacy, and patient safety. Censinet is based in Boston, MA and can be found at https://censinet.com/
###
Contacts:
Justyn Thompson
(617) 221-6875
jthompson@censinet.com
Twitter: twitter.com/censinet
LinkedIn: linkedin.com/company/censinet
Blog: censinet.com/blog
Key Points:
What is Censinet RiskOps™ for HICP, and why is it important?
- A cybersecurity service exclusively for AHA members, designed to automate and streamline the implementation of Health Industry Cybersecurity Practices (HICP).
- Helps healthcare organizations protect patient safety, operations, and data from the top five cybersecurity threats.
- Demonstrates compliance with Public Law 116-321 by showcasing recognized cybersecurity practices during audits or incidents.
- Provides a cost-effective solution for healthcare organizations of all sizes, including rural centers, community hospitals, and physician practices.
What are the key features of Censinet RiskOps™ for HICP?
- HICP-based Questionnaires: Tailored to organization size, ensuring relevance and accuracy.
- Automated Findings and Remediation Tracking: Simplifies the process of identifying and addressing cybersecurity gaps.
- Evidence Capture: Demonstrates adoption of best practices for audits and compliance.
- Executive Dashboards: Provides insights into overall cyber posture and HICP coverage.
- Peer Benchmarking: Allows organizations to compare their cybersecurity programs with others in the industry.
- Comprehensive Reporting: Generates reports for HHS, OCR, and cyber insurance carriers to demonstrate compliance.
How does Censinet RiskOps™ for HICP help AHA members comply with Public Law 116-321?
- Automates the self-assessment process to ensure organizations meet the requirement of demonstrating recognized security practices for at least 12 months.
- Provides documentation and evidence to support compliance during audits or cybersecurity incidents.
- Aligns with HICP guidelines to address the top five cybersecurity threats in healthcare.
What are the top five cybersecurity threats addressed by HICP?
- Email Phishing Attacks: Protects against malicious emails targeting sensitive information.
- Ransomware Attacks: Mitigates risks from ransomware that can disrupt care delivery.
- Loss or Theft of Equipment: Ensures safeguards for devices storing patient data.
- Insider Threats: Reduces risks from internal actors compromising security.
- Attacks Against Connected Medical Devices: Protects IoT devices critical to patient care.
Why is HICP important for healthcare organizations?
- Provides practical, industry-led guidelines to reduce cybersecurity risks for organizations of all sizes.
- Focuses on ten cybersecurity practices that address the top five threats in healthcare.
- Helps organizations demonstrate compliance with recognized security practices, reducing enforcement fines and audit periods.
- Supports patient safety and care delivery by mitigating cyber risks.
How does Censinet RiskOps™ for HICP support benchmarking and reporting?
- Offers peer benchmarking to compare cybersecurity program insights with other healthcare organizations.
- Generates detailed reports for compliance with HHS, OCR, and cyber insurance requirements.
- Tracks progress over time, providing visibility into HICP implementation and coverage.
How can AHA members access Censinet RiskOps™ for HICP?
- The service is freely available to all AHA members.
- Members can sign up for access by visiting Censinet’s website.
- Provides immediate tools and workflows to begin implementing HICP and reducing cyber risks.
