ARTICLE
6 March 2025

DHHS Proposes Modifications To HIPAA Security Rule

HF
Helsell Fetterman

Contributor

We provide trusted advice and formidable advocacy.

We provide trusted advice and formidable advocacy for our clients. Our core responsibilities include understanding our clients’ goals, aspirations, and challenges, and using those insights to deliver the highest standard of personalized services in a timely and efficient manner. We create innovative solutions and, when advantageous, provide a team approach to problem solving.

We offer a diverse, rewarding, and welcoming place to work where attorneys and staff can achieve long-term growth, personally and professionally.

Citing a dramatic increase in large health data breaches, DHHS has issued a notice of proposed rulemaking for modifications to the HIPAA Security Rule to enhance cyber security protections...
United States Food, Drugs, Healthcare, Life Sciences

Citing a dramatic increase in large health data breaches, DHHS has issued a notice of proposed rulemaking for modifications to the HIPAA Security Rule to enhance cyber security protections for electronic protected health information (ePHI). Some of the major proposed changes include:

  • new definition for "electronic information system"
  • new definition for "multi-factor authentication" and adding an MFA mandate
  • new standards for updating technology asset inventories and network maps illustrating movement of ePHI
  • for physical safeguards, removing the distinction between "required" and "addressable" implementation specifications

The rule updates are intended to bolster the resilience of healthcare providers against ongoing cyber attacks. The proposed rule is open for comment until March 7, 2025.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More