Healthcare organizations lagging behind NIST Cybersecurity Framework, HIPAA guidance

Healthcare organizations are still lacking in key areas of cybersecurity readiness, according to a progress report by CynergisTek. The report found that healthcare organizations are performing well below expectations in following the advice and best practices of the NIST Cybersecurity Framework and HIPAA privacy and security rules. Compliance does not equate to security, the report emphasized. The report also found a decline in awareness and training for healthcare organizations, which is alarming considering the increasing sophistication of cyber attacks.