When DHHS delivered the HIPAA Security Rule Crosswalk, we were able to support it in its entirety.
AUSTIN, Texas (PRWEB) March 08, 2016
Cybernance launched today a major update of its cybersecurity governance platform to fully support the recently announced HIPAA Security Rule Crosswalk. Organizations seeking compliance with both NIST and HIPAA standards can now conduct automated assessments.
“We designed and released a generalized compliance console last year,” said Charles Leonard, vice president of product management at Cybernance. “When DHHS delivered the HIPAA Security Rule Crosswalk, we were able to support it in its entirety.”
The HIPAA Security Rule Crosswalk maps each administrative, physical and technical safeguard standard and implementation specification in the HIPAA Security Rule to a relevant NIST Cybersecurity Framework subcategory. “Enabling directors to oversee cyber risk mitigation requires bridging the communication gap between them, the CEO, the security staff, and vendors who implement cybersecurity measures,” said Mike Shultz, co-founder and CEO of Cybernance. “Integrating HIPAA extends that same transparency to compliance with healthcare standards.”
Cybernance’s platform measures and monitors 300 enterprise security controls specified within the ten domains of the Cybersecurity Capability Maturity Model (C2M2) developed at the Department of Energy, and it reports them across the NIST Framework’s three dimensions. Now similar controls power the new HIPAA console.
By fostering and archiving communication with cybersecurity management and indemnifying directors against litigation expenses, the standards-based solution protects corporate board members and executive management from significant personal liability after a breach.
About Cybernance Corporation
Cybernance is an Austin-based startup founded by former officers of Infoglide Software, a cybersecurity company sold in 2013 to FICO. Its SaaS governance solution provides visibility and oversight enabling corporate directors to actively engage in overseeing cyber risk and protecting them from personal liability for cybersecurity breaches.