|May 30, 2014|
Previously published on May 2014
The Obama Administration recently announced that it allow HHS to continue its efforts to mitigate cyberrisk. Last year, President Obama issued Executive Order (EO) 13636, “Improving Critical Infrastructure Cybersecurity,” which required HHS and other Executive Branch agencies to assess whether and how existing cybersecurity regulation could be streamlined and better aligned with the Cybersecurity Framework.
As explained by Michael Daniel, Special Assistant to the President and Cybersecurity Coordinator, “the Cybersecurity Framework articulates a risk management approach based on best practices and globally recognized standards. It is a voluntary tool that organizations can use to strengthen cyber risk management.” The Framework was launched in February 2014.
The White House decided to not to force HHS (or the other agencies) to adopt new cyber-specific regulations after reviewing its May 12, 2014 report.