AHIMA Releases Updated Cybersecurity Guidelines

AHIMA Releases Updated Cybersecurity Guidelines

The best way to defend against a cybersecurity attack is to develop a robust, tested cybersecurity plan. AHIMA has released updated guidelines for providers looking to implement cybersecurity prevention measures.

The guidelines document, titled “AHIMA Guidelines: The Cybersecurity Plan,” outlines 17 steps to a complete cybersecurity plan, including:

  1. Conduct a risk analysis of all applications and systems
  2. Recognize record retention as a cybersecurity issue
  3. Patch vulnerable systems
  4. Deploy advanced security endpoint solutions that provide more effective protections than standard antivirus tool
  5. Encrypt workstations (high-risk) and laptops, smartphones and tablets, portable media and backup tapes (if tapes are being used)
  6. Improve identity and access management
  7. Refine web filtering (blocking bad traffic)
  8. Implement Mobile Device Management (MDM)
  9. Develop incident response capability
  10. Monitor audit logs to selected systems
  11. Leverage existing security tools like Intrusion Prevention System/Intrusion Detection System (IPS/IDS) to detect unauthorized activities
  12. Evaluate business associates
  13. Improve tools and conduct an internal phishing campaign
  14. Hire an outside security firm to conduct technical and nontechnical evaluations
  15. Prepare a ‘State of the Union’ type presentation for an organization’s leaders on cybersecurity
  16. Apply a ‘Defense in Depth’ Strategy
  17. Detecting and Preventing Intrusion

The guidelines also include a glossary of important security terms. To read the full guidelines, click here.

Leave a comment

Send a Comment

Your email address will not be published. Required fields are marked *