Skip to main content
U.S. flag
An official website of the United States government

405(d) Post

Our bi-monthly newsletter strives to educate our stakeholders on new and emerging cybersecurity threats and technologies by highlighting the use of the HICP publication, how our Task Group members have used it in practical situations, and share news of upcoming cybersecurity and U.S. Department of Health and Human Services events.

Download July 2024 405(d) PostTo see previous posts, click here
Task Group Articles
405(d) Chronicles
HICP in the spotlight
The Increasing Risks to Cloud Security and Telehealth in Healthcare

405(d) Chronicles

July 9, 2024

Read on how telehealth services has revolutionized the healthcare industry.
Ensuring Uninterrupted Communication with CISA’s Priority Telecommunications Services
405(d) Chronicles April 29, 2024

In today’s hyper-connected world, the ability to maintain communication during crises is not just advantageous — it’s essential. The Cybersecurity and Infrastructure Security Agency (CISA) recognizes this imperative and offers Priority Telecommunications Services (PTS) to ensure that essential personnel can stay connected even when network infrastructures are strained by natural disasters, cyber-attacks, or other disruptive events.

Unprepared for Long-Term Outages? Your Organization Could Face More Than You Realize!
405(d) Chronicles | Donna Grindle and Gerry Blass, 405(d) Task Group MembersJune 29, 2023

Donna Grindle and Gerry Blass discuss how to navigate long-term outages, including key components, training, and more!

Legal Implications of a Cyber-Attack
405(d) Chronicles | Paul Otto, Cindi Bassford, and Dan Ongaro, 405(d) Task Group membersSeptember 19, 2022
Healthcare remained the industry with the highest average cyber-attack costs for the eleventh year in a row
Cyber Insurance—From Risk Transference to Organizational Assurance
405(d) Chronicles | Traci Lamb and Mitch Parker, 405(d) Task Group MembersSeptember 16, 2022
Acquiring cyber insurance into your organization policies can alleviate the burdens that arise if your network becomes compromised by a ransomware attack.
Bust Cybersecurity Myths with Education and Training
405(d) Chronicles | Bijan Anvar, 405(d) Task Group MemberMarch 1, 2022
Bijan Anvar shares his own personal experiences delivering training to medical, dental and legal groups and shares the value of cybersecurity education.
My Top 5 Reasons for Conducting Ongoing, Continuous Risk Analyses
405(d) Chronicles | Bob Chaput, MA, CISSP, HCISPP, CRISC, CIPP/US, C|EH, NACD CERT, 405(d) Task Group MemberJanuary 1, 2022
Read along as Bob Chaput discusses the topic of cybersecurity and cyber risk mangement no longer simply a matter of compliance or data security. Cyber risk is about patient safety and medical professional liability.
Security Awareness Program: Case Study
405(d) Chronicles | Tom Carey, 405(d) Task Group MemberSeptember 1, 2021
Tom Carey discusses the value of providing cybersecurity awareness training to your employees and emphasizing the importance of incorporating cyber security habits in your company's culture.
405(d) Chronicles
405(d) Chronicles | Mark Jarrett, MD, MBA, MS- 405(d) Task Group MemberJuly 1, 2021
Dr. Mark Jarrett shares his thoughts on lessons learned from the pandemic experience and the responsbility we all have to be guardians of our data. Learn more here.
405(d) Chronicles
405(d) Chronicles | Amy Wood, 405(d) Task Group memberMay 1, 2021
Security and compliance issues remain a heightened concern, especially for small healthcare facilities. This article will enlighten you on things to consider as you work with third party vendors to manage patient telehealth.
405(d) Chronicles
405(d) Chronicles | Donna Grindle, 405(d) Task Group MemberMarch 1, 2021
The pandemic created the need for increased use of technology to meet patient healthcare needs. Looking ahead, is your organization prepared with the necessary security requriements to keep patient data safe? Learn more here.
This content is in the process of Section 508 review. If you need immediate assistance accessing this content, please submit a request to cisa405d@hhs.gov. Content will be updated pending the outcome of the Section 508 review.