Implementing the HIPAA Security Rule: Call for Comments on NIST SP 800-66, Revision 1
The National Institute for Standards and Technology (NIST) is planning to update the NIST Special Publication (SP) 800—66, Revision 1, An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule (“Resource Guide”). NIST is seeking stakeholder input on the purpose of the Resource Guide to educate readers about information security terms used in the HIPAA Security Rule, amplify awareness of NIST cybersecurity resources relevant to the HIPAA Security Rule, amplify awareness of non-NIST resources relevant to the HIPAA Security Rule, and provide detailed implementation guidance for covered entities and business associates.
Recognizing that covered entities and business associates have diverse ways of implementing the HIPAA Security Rule, NIST is soliciting feedback about how organizations are implementing the Resource Guide, its application, and its use in practice. You can view the Call for Comments here: https://csrc.nist.gov/publications/detail/sp/800-66/rev-2/draft.
The comment period is open through June 15, 2021. Comments may be submitted via email to: [email protected] with “Resource Guide for Implementing the HIPAA Security Rule Call for Comments” in the subject field. Once completed, the resulting draft of SP 800-66, Rev. 2, will be provided for public review and comment.
Source: HHS