Department of Commerce Releases Draft Mobile Cybersecurity for Health Industry Guide | Practical Law

Department of Commerce Releases Draft Mobile Cybersecurity for Health Industry Guide | Practical Law

The National Cybersecurity Center of Excellence division of the US Department of Commerce has released Securing Electronic Health Records on Mobile Devices, a draft guide that demonstrates how health care providers can make mobile devices more secure in order to better protect patient information while still taking advantage of advances in technology.

Department of Commerce Releases Draft Mobile Cybersecurity for Health Industry Guide

Practical Law Legal Update 6-617-7075 (Approx. 3 pages)

Department of Commerce Releases Draft Mobile Cybersecurity for Health Industry Guide

by Practical Law Intellectual Property & Technology
Published on 27 Jul 2015USA (National/Federal)
The National Cybersecurity Center of Excellence division of the US Department of Commerce has released Securing Electronic Health Records on Mobile Devices, a draft guide that demonstrates how health care providers can make mobile devices more secure in order to better protect patient information while still taking advantage of advances in technology.
On July 23, 2015, the US Department of Commerce's National Cybersecurity Center of Excellence (NCCoE) released a draft guide that businesses can use to improve their cybersecurity using standards-based commercially available or open source tools. Securing Electronic Health Records on Mobile Devices was created by cybersecurity experts and health care providers to give IT implementers and security engineers a step-by-step guide to help health care organizations that use mobile devices to more securely share electronic health records. The guide:
  • Maps to:
  • Takes into account the need for differing implementation for different circumstances, like when cybersecurity is handled in-house or outsourced.
  • Provides a detailed security architechture implementers may follow that uses automated configuration of security controls to faciliate ease of use.
The draft is expected to be the first in a newly established series of NIST special publications focused on helping companies protect their information systems. Interested parties may submit email comments to [email protected] by September 25, 2015.