Technical Volume 1: Cybersecurity Practices for Small Health Care Organizations

Healthcare and Public Health Sector Coordinating Councils

This guide, the Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients (HICP) is the primary publication of the Cybersecurity Act of 2015, Section 405(d) Task Group, aims to raise awareness, provide vetted cybersecurity practices and move organizations towards consistency in mitigating the current and most pertinent cybersecurity threats to the sector. It seeks to aid healthcare and public health organizations to develop meaningful cybersecurity objectives and outcomes. 

Technical Volume 1 discusses the ten cybersecurity practices along with sub-practices specifically for small health care organizations.