April 22, 2014 – Healthcare organizations are still struggling with information sharing both internally and externally, participants in an industry-wide cyber-security exercise said.
The Health Information Trust Alliance (HITRUST) teamed up with the U.S. Department of Health and Human Service (HHS) in the CyberRX initiative to determine just how prepared organizations were to handle cyber-incidents. The first exercise was conducted over a seven-hour period on April 1, and the results of the first simulations were released Monday. The second exercise is scheduled for this summer.
Throughout the one-day event, organizations were faced with a randomly selected cyber-incident scenario, such as a major username and password breach, a network breach at a health plan provider exposing patient health records, an information leak, or a potential insider threat case. Organizations varied in how prepared they were to process threat intelligence, communicating the information to internal stakeholders, and engaging with external partners in the industry and government.
Click here to read the full Security Week article.