News and Events

September 14, 2018

The National Law Review mentions the NIST practice guide “Securing Electronic Health Records on Mobile Devices” as a resource helping to reduce cybersecurity risks associated with the expanded use of Electronic Health Records (EHRs).

August 31, 2018

The National Institute of Standards and Technology (NIST) has released the final version of its guidelines to help healthcare organizations guard against cybersecurity threats to wireless infusion pumps. Wireless infusion pumps face risks ranging from unauthorized access to protected health information to interference with a pump’s function and drug dosing, the agency said.

August 29, 2018

In recognition of the vulnerability of mobile devices and the daily use of those devices in health care, the National Institute of Standards and Technology (NIST) and the National Cybersecurity Center of Excellence (NCCoE) released a practice guide earlier this month entitled Securing Electronic Health Records on Mobile Devices (NIST Special Publication 1800-1).

August 28, 2018

SC Media highlights SP 1800-8 Securing Wireless Infusion Pumps and mentions that the guide contains lessons and tips that can help protect the Internet of Medical Things (IoMT).

August 27, 2018

Medical infusion pumps, which deliver medications to patients, are archetypal examples of the expanding threat surface being delivered by connected devices. Connecting these pumps to clinical systems can improve healthcare delivery, but if not properly secured could endanger the patient and expose the health delivery organization (HDO) infrastructure to intrusion.

August 21, 2018

The use of Internet of Things (IoT) devices has exploded across numerous industries, and healthcare is no exception. However, the past 2 years have proven that healthcare delivery organizations (HDOs) are particularly open to cyberthreats. One recent factor generating industry vulnerability has been the widespread adoption of medical IoT devices, including wireless infusion pumps.

August 08, 2018

Healthcare organizations wondering how to better secure information can look to the National Cybersecurity Center of Excellence for advice after it recently released a new set of practice guidelines on how to better protect information in electronic health records (EHRs). The center's practice guide for Securing Electronic Health Records on Mobile Devices was recently released in an effort to prevent EHRs from being exploited, ensuring patients’ health, identity and privacy aren’t compromised.

August 06, 2018

The new report from the National Institute of Standards and Technology outlines how organizations can use open-source and commercially available tools to keep patient information safe on mobile devices.

August 06, 2018

To help healthcare organizations take advantage of mobile devices without violating the HIPAA Security Rule and patient privacy, the National Institute of Standards and Technology (NIST) and The National Cybersecurity Center of Excellence (NCCoE) has produced a new guide – Securing Electronic Health Records on Mobile Devices. The guide focuses on healthcare organizations that use mobile devices to review, update, and exchange electronic health records and addresses risks such as the loss or theft of devices, the hacking of devices, connecting to untrusted networks, and interaction between mobile devices and other systems.

August 03, 2018

With smartphones and tablets becoming ubiquitous in healthcare, the National Institute of Standards and Technology has issued a “how-to” guide aimed at helping providers secure EHRs on mobile devices. The guide provides a simulated solution developed by NIST's National Cybersecurity Center of Excellence using commercially available products. The scenario involves interactions among mobile devices and an EHR system that is supported by an organization's IT infrastructure.

August 03, 2018

The National Institute of Standards and Technology at the U.S. Department of Commerce released a guide for securing patient information accessed on mobile devices.

August 03, 2018

NIST and the National Cybersecurity Center of Excellence (NCCoE) have released a guide on how providers can improve healthcare mobile device security to better protect PHI. The guidance, Securing Electronic Records on Mobile Devices, provides IT professionals and security engineers with a security architecture that they can copy or recreate.

August 02, 2018

Implementing security safeguards is increasingly important as providers store and share patient EHRs on mobile devices.

June 14, 2018

The National Institute of Standards and Technology (NIST) Computer Security Resource Center (CSRC) has a wealth of resources targeting specific cybersecurity challenges in the public and private sectors. These practical, user-friendly guides can help your practice facilitate the adoption of standards-based approaches to cybersecurity.

May 16, 2018

The National Institute of Standards and Technology (NIST) has announced that it will be seeking industry input on developing use cases for its framework of cybersecurity standards related to patient imaging devices. NIST’s latest announcement is directed at eventually providing security guidance for the healthcare sector’s most common uses of data.

May 09, 2018

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence today issued a request for technical expertise and products to help improve the cybersecurity of Picture Archiving and Communications Systems, widely used for treatment and diagnosis in hospitals. In a Federal Register notice, NIST “invites organizations to provide products and technical expertise to support and demonstrate security platforms” for the cybersecurity of PACS, which comprise medical imaging technology used for storing and presenting images produced by MRIs, X-rays, CT scanners, and other devices.

May 01, 2018

This article discusses how the National Cybersecurity Center of Excellence (NCCoE) develops practical and usable cybersecurity guidance that can be adopted across industries, including the healthcare sector. The NCCoE works across public-private partnerships to create the National Institute of Standards and Technology (NIST) Special Publication (SP)1800 Series practice guides that are focused on specific industry challenges that companies can adopt for use.

April 24, 2018

Join the NCCoE for a series of events hosted by NH-ISAC & Intermountain Healthcare. Attendees will have a chance to collaborate with other healthcare providers, medical device manufacturers, and payers in a series of free interactive forum. NCCoE staff will take part in Collaboration with Health Systems and Ongoing Initiatives at the NCCoE from 11:10 am to 11:40 am on April 20. 

April 16, 2018

The NCCoE will present and provide project demonstrations at the RSA Conference 2018 in San Francisco. Click for additional information on topics, times, and locations.

March 05, 2018

Engage with the NCCoE and NIST at the Healthcare Information and Management Systems Society (HIMSS) Annual Conference and Exhibition to learn how we are accelerating the deployment and use of secure, standards-based technologies to enhance cybersecurity. Click fore more information on our presentations and kiosk location.