KENTUCKY REGIONAL EXTENSION CENTER

HIPAA Security Rule Gets a Makeover – Let’s Break it Down – Webinar Mar 27

Mar 3, 2025

HIPAA Security Rule Gets a Makeover – Let’s Break it Down

Public Webinar to be released Thursday March 27

 

Fill out this brief REGISTRATION FORM to be among the first to receive this webinar recording.

HHS Announces Proposed Changes to the HIPAA Security Rule!

The Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking to Strengthen Cybersecurity for Electronic Protected Health Information (NPRM) on Jan 6, 2025. This will be the first major update to the HIPAA Security Rule since the HIPAA Omnibus Rule in 2013. These proposed changes bring about new requirements, including:

  • Vulnerability scanning
  • Penetration testing
  • Patch management
  • Network segmentation
  • Data backup testing
  • Multi-factor authentication
  • Security incident planning and testing
  • HIPAA compliance audits
  • Business associate delegation
  • Guidelines for ongoing maintenance

This webinar will provide an overview of the proposed changes and expected timelines for regulated entities to meet compliance with the new rule. This proposed rule seeks to strengthen cybersecurity by updating the Security Rule’s standards to better address ever-increasing cybersecurity threats to the health care sector.

While the Department is undertaking this rulemaking, the current Security Rule remains in effect.

HHS encourages all stakeholders, including patients and their families, health plans, health care providers, health care professional associations, consumer advocates, and government entities, to submit comments through regulations.gov.

For more information about the newly proposed rule for HIPAA Security, please follow the links below:

Fact Sheet: “HIPAA Security Rule Notice of Proposed Rulemaking to Strengthen Cybersecurity for Electronic Protected Health Information
https://www.hhs.gov/hipaa/for-professionals/security/hipaa-security-rule-nprm/factsheet/index.html

Notice of Proposed Rulemaking (NPRM) – “HIPAA Security Rule To Strengthen the Cybersecurity of Electronic Protected Health Information

CONTACT US

Contact the experts at Kentucky REC with all your HIPAA Privacy and Security questions. We’re here to help: 859-323-3090.

 

© University of Kentucky, Lexington, Kentucky, USA | An Equal Opportunity University | Interpreter Services | Notice of Non-Discrimination