Cybersecurity is becoming increasingly important as healthcare organizations face an onslaught of online threats. To improve cybersecurity, providers need to implement an established security framework that meets organizational needs without being overbearing, according to Eric Nilsson, chief technology officer of the SSI Group, a revenue cycle solutions company.
The Health Information Trust Alliance — a nonprofit focused on safeguarding sensitive information and managing risk for providers — uses such a framework, Mr. Nilsson said. The nonprofit is led by a seasoned management team and governed by a board of directors who are leaders from across the healthcare industry.
"HITRUST has designed the security framework that allows you to manage both risk and security in your healthcare organization," Mr. Nilsson told Becker's Hospital Review. "[Its] framework rationalizes relevant regulations and standards into a single overarching security framework."
Having a comprehensive framework, especially one that ties together multiple standards and requirements from HIPAA, the payment card industry and the International Organization for Standardization, can significantly improve an organization's cybersecurity position. HITRUST also creates this framework based on organization size and system type.
"Having a security framework that meets your organization’s needs will allow you to strengthen your cybersecurity posture," Mr. Nisson concluded.
If you would like to share your RCM best practices, please email Kelly Gooch at kgooch@beckershealthcare.com to be featured in the "RCM tip of the day" series.