Article Archives

Enhancing Cybersecurity in Healthcare: An Overview of the HPH CPGs

As healthcare organizations increasingly rely on digital systems for patient care, they become attractive targets for cyber threats. Recognizing this crucial need, the U.S. Department of Health and Human Services (HHS) released the Healthcare and Public Health (HPH) Sector-Specific Cybersecurity Performance Goals, also known as HPH CPGs, on December 6, 2023. Read More

Published On March 27, 2024

Navigating the Ripples of Change: HIPAA's 2023-2024 Evolution and Preparation Strategies for Healthcare Organizations

The HIPAA landscape is no stranger to change. A regulatory cornerstone for safeguarding health data, the Health Insurance Portability and Accountability Act (HIPAA), continuously evolves to meet the complex demands of the modern healthcare ecosystem. With updates looming on the horizon, healthcare organizations must ready themselves to adapt to these statutory amendments. What will these revisions entail, and crucially, how can healthcare entities prepare? Read More

Published On March 1, 2024

Unraveling the Cybersecurity Assessment Maze: Meditology's Guide to Making the Right Choice

As the cybersecurity expert at your organization, the number of acronyms that daily cross your radar can be overwhelming. How do you cut through the acronyms, the conflicting regulatory requirements, and the differing opinions on which industry standard best meets the needs of your organization? Read More

Published On March 1, 2024

NIST Releases Cybersecurity Framework 2.0

In this article, we'll explore CSF 2.0 specifically within the healthcare sector. Read More

Published On March 1, 2024

Implementing Cybersecurity Measures: Lessons from the HHS OCR Settlement

The U.S. Department of Health and Human Services' Office for Civil Rights (OCR) recently settled with Montefiore Medical Center, a non-profit hospital system in New York City, for several potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. This incident underscores the importance of robust cybersecurity measures in healthcare organizations and provides valuable lessons for similar institutions. Read More

Published On March 1, 2024

Unveiling the Updates: Navigating NIST SP 800-66 Rev 2

In this blog, we will provide a comprehensive comparison between Revision 1 and Revision 2, highlighting the key differences, improvements, and impacts on organizations. Read More

Published On March 1, 2024

Change Healthcare Incident: A Wake-Up Call for Cybersecurity in the Healthcare Sector

If you don’t have a current inventory of your third parties and tools your organization uses, if you haven’t been rating risks and conducting business impact analyses, it’s time to start. Don’t wait. Don’t be the next headline or industry example. Contact Meditology. Read More

Published On February 28, 2024

SEC Adds Another Layer of Regulatory Requirements

In this article, we will discuss the SEC's adoption of new rules that require public companies to disclose material cybersecurity incidents and to provide annual disclosure of their cybersecurity risk management, strategy, and governance. Read More

Published On February 12, 2024

BLOG

Enhancing Cybersecurity in Healthcare: An Overview of the HPH CPGs

Navigating the Ripples of Change: HIPAA's 2023-2024 Evolution and Preparation Strategies for Healthcare Organizations

Unraveling the Cybersecurity Assessment Maze: Meditology's Guide to Making the Right Choice

NIST Releases Cybersecurity Framework 2.0

Implementing Cybersecurity Measures: Lessons from the HHS OCR Settlement

Unveiling the Updates: Navigating NIST SP 800-66 Rev 2

Change Healthcare Incident: A Wake-Up Call for Cybersecurity in the Healthcare Sector

SEC Adds Another Layer of Regulatory Requirements

Featured Blog Posts

Cloud Security Risk Assessments Instrumental in Transforming Healthcare Organizations’ Cloud Security Posture

Strengthening Medical Device Resiliency and Supply Chain Risk Preparedness in Clinical Settings

How to Build a Resilient Third-Party Risk Management Program

Cyber Risk Management: The Ultimate Olympic Challenge

Find the right RITHM for you.