U.S. Rep. Brian Fitzpatrick (R-PA) on Sept. 13 introduced a bipartisan bill that would bolster the cybersecurity of the nation’s Healthcare and Public Health Sector, one of the United States’ 16 critical infrastructure sectors.
“Forty-six million Americans had their health data breached in 2021 as a result of a cyberattack,” Rep. Fitzpatrick said on Tuesday. “The increasing number of attacks on our hospitals and health centers must be addressed.”
The Healthcare Cybersecurity Act of 2022, H.R. 8806, which is sponsored by U.S. Rep. Jason Crow (D-CO), is the companion bill to the same-named S. 3904, introduced on March 23 by U.S. Sens. Bill Cassidy (R-LA) and Jacky Rosen (D-NV).
“I am proud to join my colleague Rep. Crow to introduce the Healthcare Cybersecurity Act of 2022, which will create new resources for cybersecurity risk training and promote strong cybersecurity measures across our nation’s healthcare systems,” said Rep. Fitzpatrick.
If enacted, the measure would direct the Cybersecurity and Infrastructure Security Agency (CISA) to collaborate with the U.S. Department of Health and Human Services (HHS) to improve cybersecurity in the Healthcare and Public Health Sector, which protects all sectors of the economy from hazards such as terrorism, infectious disease outbreaks, and natural disasters.
The bill would require CISA and HHS to enter into an agreement to improve cybersecurity in the Healthcare and Public Health Sector; authorize cybersecurity training to Healthcare and Public Health Sector asset owners and operators on cybersecurity risks and ways to mitigate them; and require CISA to conduct a detailed study on specific cybersecurity risks facing the Healthcare and Public Health Sector, according to a bill summary provided by Rep. Fitzpatrick’s staff.
“Cyberattacks on our hospitals and health centers are becoming increasingly common and they are driving up our healthcare costs,” said Rep. Crow. “I’m proud to introduce the bipartisan Healthcare Cybersecurity Act with Rep. Fitzpatrick to protect the American people and their data from these malicious attacks.”