Table 15. Acronyms and Abbreviations

from Cybersecurity Practices for Health Care Organizations~ RJ BLANCHARD BENEFIT SERVICES

Table 14. Example Cybersecurity Policies for Consideration

Threats Mitigated

1. E-mail phishing attacks 2. Ransomware attacks 3. Loss or theft of equipment or data 4. Insider, accidental or intentional data loss 5. Attacks against connected medical devices that may affect patient safety

Suggested Metrics

 Number of policies reviewed over a specified timeframe. The goal is to establish a standard practice to review policies and to monitor compliance with this standard.  Number of workforce members who review and sign off after reading policies over a specified timeframe. The goal is to establish a standard practice for workforce members to review applicable policies and attest to the review, and for the organization to monitor compliance with this standard.

100

Table 15. Acronyms and Abbreviations

Next Article

Table 14. Example Cybersecurity Policies for Consideration

Threats Mitigated

Suggested Metrics

More articles from this publication:

Table 14. Example Cybersecurity Policies for Consideration

Cybersecurity Practice #9: Medical Device Security

Table 12. Timeframes for Resolving Medical Device Vulnerabilities

Table 11. Roles and Responsibilities for an Organizational CIRT

Table 9. Factors for Consideration in Penetration Test Planning

Cybersecurity Practice #6: Network Management

Cybersecurity Practice #8: Security Operations Center and Incident Response

Appendix B: References

Table 13. Incident Response Plays for Attacks Against Medical Devices

This article is from:

Cybersecurity Practices for Health Care Organizations~ RJ BLANCHARD BENEFIT SERVICES