Healthcare Cybersecurity Act brought to House by bipartisan cosponsors

The Healthcare Cybersecurity Act has found sponsors in the U.S. House of Representatives, bringing the bill to both chambers of Congress. Initially proposed in 2022, the law was reintroduced to the Senate in July, co-sponsored by Jacky Rosen (D-Nev.), Todd Young (R-Ind.) and Angus King (I-Me.).

In the House, the companion bill is similarly sponsored by a bi-partisan coalition, namely Jason Crow (D-CO), Brian Fitzpatrick (R-PA), and Andy Kim (D-NJ). 

If passed, the law (as currently written) would direct the U.S. Department of Health and Human Services (HHS) and Cybersecurity and Infrastructure Security Agency (CISA) to more effectively coordinate to develop cybersecurity protocols for healthcare entities. 

In support of those ends, the bill would create a special liaison to HHS within CISA, who are then tasked to “collaborate to support healthcare and public health sector entities,” using all available public and private-sector resources. 

“Hospitals and health centers are fundamental pillars of our nation's infrastructure. With the alarming rise in malicious cyberattacks causing critical data breaches, increased healthcare costs and jeopardized patient health, we cannot delay action in addressing this issue. By providing new resources for cybersecurity risk training and fortifying our cybersecurity protections nationwide, our bipartisan legislation takes decisive action to safeguard our healthcare systems and protect lives,” Congressman Fitzpatrick said in a statement.

The bill has received praise from provider groups and cybersecurity experts alike, including academics. 

“As Dean of the Kirk Kerkorian School of Medicine at UNLV, we wholeheartedly support [the Healthcare Cybersecurity Act] to enhance the cybersecurity of the Healthcare and Public Health Sector,” Marc Kahn, dean of the University of Nevada Las Vegas Medical School, said in the an earlier announcement pertaining to the bill’s introduction in the Senate. “This critical initiative addresses the increasing threats to our healthcare infrastructure, ensuring the protection of sensitive patient data and the integrity of our medical systems.”

“By implementing comprehensive cybersecurity measures, this legislation will not only safeguard our healthcare facilities but also enhance the overall quality of care and patient outcomes,” Khan added.

The Healthcare Cybersecurity Act has yet to come to the floor for a vote. Crow, Fitzpatrick and Kim announced its introduction to the House on Aug. 28.

Chad Van Alstin Health Imaging Health Exec

Chad is an award-winning writer and editor with over 15 years of experience working in media. He has a decade-long professional background in healthcare, working as a writer and in public relations.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.