News and Events

August 08, 2018

Healthcare organizations wondering how to better secure information can look to the National Cybersecurity Center of Excellence for advice after it recently released a new set of practice guidelines on how to better protect information in electronic health records (EHRs). The center's practice guide for Securing Electronic Health Records on Mobile Devices was recently released in an effort to prevent EHRs from being exploited, ensuring patients’ health, identity and privacy aren’t compromised.

August 06, 2018

The new report from the National Institute of Standards and Technology outlines how organizations can use open-source and commercially available tools to keep patient information safe on mobile devices.

August 03, 2018

With smartphones and tablets becoming ubiquitous in healthcare, the National Institute of Standards and Technology has issued a “how-to” guide aimed at helping providers secure EHRs on mobile devices. The guide provides a simulated solution developed by NIST's National Cybersecurity Center of Excellence using commercially available products. The scenario involves interactions among mobile devices and an EHR system that is supported by an organization's IT infrastructure.

August 03, 2018

The National Institute of Standards and Technology at the U.S. Department of Commerce released a guide for securing patient information accessed on mobile devices.

August 03, 2018

NIST and the National Cybersecurity Center of Excellence (NCCoE) have released a guide on how providers can improve healthcare mobile device security to better protect PHI. The guidance, Securing Electronic Records on Mobile Devices, provides IT professionals and security engineers with a security architecture that they can copy or recreate.

August 02, 2018

Implementing security safeguards is increasingly important as providers store and share patient EHRs on mobile devices.

June 14, 2018

The National Institute of Standards and Technology (NIST) Computer Security Resource Center (CSRC) has a wealth of resources targeting specific cybersecurity challenges in the public and private sectors. These practical, user-friendly guides can help your practice facilitate the adoption of standards-based approaches to cybersecurity.

May 01, 2018

This article discusses how the National Cybersecurity Center of Excellence (NCCoE) develops practical and usable cybersecurity guidance that can be adopted across industries, including the healthcare sector. The NCCoE works across public-private partnerships to create the National Institute of Standards and Technology (NIST) Special Publication (SP)1800 Series practice guides that are focused on specific industry challenges that companies can adopt for use.

January 26, 2018

NIST and the National Cybersecurity Center of Excellence (NCCoE) have been using Cooperative Research and Development Agreements (CRADAs) for joint cybersecurity efforts. Companies with relevant products were invited to sign a CRADA with NIST, allowing them to participate in a consortium to build this example solution. NIST aims to describe the process that brings together the collaborators in an open and transparent way.

June 27, 2017

NCCoE Director of Operations Tim McBride will speak at Cyber Hygiene for the Health Sector on Tuesday, June 27 from 8am-9:30am EST at Launch Workplaces (9841 Washingtonian Blvd Ste 200, Gaithersburg, MD 20878). Do you worry about the security of your organizations data, your customer's data, or the potential impacts of a cyber attack on your organization? McBride will join speakers Denise Anderson, President, National Health Information Sharing and Analysis Center (NH-ISAC) and Kevin Crain, CISO, UMD Health System to examine the need for good cyber hygiene in healthcare sector organizations.

February 19, 2017

The NCCoE will be participating with NIST at the 2017 Healthcare Information and Management Systems Society (HIMSS) Annual Conference & Exhibition at the Orange County Convention Center in Orlando, Fl.  for additional information on presentations, demonstration times, and exhibition location. 

February 09, 2017

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute for Standards and Technology (NIST), will demonstrate its current projects in San Francisco Feb. 13-17 at the RSA Conference and Orlando Feb 19-23 at the Healthcare Information and Management Systems Society Annual Conference & Exhibition (HIMSS17).

Individuals and organizations interested in learning more about the NCCoE’s work and how they can participate are encouraged to visit the booth and attend the presentations and demonstrations listed below.

RSA Conference: February 13-17, 2017

November 03, 2016

NCCoE Computer Scientist Gavin O'Brien will participate in the "Information Security: It's Everyone's Problem" session from 10:30m-11:30am at the AEHIX 16 Fall Forum in Phoenix, Arizona. This session explores the current threat landscape and identifies best practices for protecting the organization and information vital to patient care and business operations. This fall forum aims to bring together thought leaders from across health IA, IT, and IS specialties to network and share ideas on how IT can help bend the cost curve.

October 18, 2016

NIST and the Department of Health and Human Services' Office for Civil Rights will co-host the 9th annual Safeguarding Health Information: Building Assurance through HIPAA Security Conference on October 19-20, 2016 at the Capital Hilton, Washington, D.C. NCCoE computer scientist Gavin O'Brien will host a panel on "Addressing Healthcare Cybersecurity Challenges through Standards-based Solutions" on October 19 from 1:15pm-2:15pm.

August 16, 2016

The healthcare industry is plagued with data breaches and other cybersecurity nightmares. At the same time, connected medical devices – components of the so-called Internet of Things – are multiplying, opening more holes in security and creating terrible potential for patient casualties. The National Cybersecurity Center of Excellence (NCCoE), established by the National Institute for Standards and Technology (NIST), released its first cybersecurity practice guide last year called "Securing Electronic Health Records on Mobile Devices."

July 27, 2016

NCCoE Computer Scientist Gavin O'Brien will participate in a panel discussion on "Standards and Regulations Supporting Medical Device Cybersecurity and Privacy" at 10:50am at the New Jersey Hospital Association's Internet of Medical Things conference.  

July 14, 2016

Hospitals that integrate EHRs have started to look at external standards, such as those presented by the National Cybersecurity Center of Excellence (NCCoE) that attempt to create "best practice" guidelines for EHR security. Coupled with the MDM policies of the institution, they can create an environment that is functional, yet secure.

March 23, 2016

From the hospital hallways to home-based treatment, smartphones, tablets and wearables are aiding health care practitioners in their treatment of patients by providing secure access to critical, real-time patient data in electronic medical records. When the NIST and NCCoE established their cybersecurity guidelines around securely mobilizing electronic health records, there’s a reason they included the suggestion of utilizing an enterprise mobility management solution (EMM).

February 28, 2016

The NCCoE will be co-exhibiting with NIST at the Healthcare Information and Management Systems Society (HIMSS) Conference and Exhibition from Feb. 29 to March 4, 2016.

February 09, 2016

Earlier this week, President Barack Obama announced the implementation of the Cybersecurity National Action Plan (CNAP) in an effort to further improve the nation’s approach to cybersecurity.

In terms of healthcare cybersecurity, the increase in information sharing could be greatly beneficial, according to earlier statements from the Health Information Trust Alliance (HITRUST).