Eric C. Thompson, Building a HIPAA-Compliant Cybersecurity Program, https://doi.org/10.1007/978-1-4842-3060-2_8

8. Increasing Program Maturity

Eric C. Thompson¹

(1)Lisle, Illinois, USA

The process of reducing risk is achieved by mapping each risk to a security measure meant to mitigate or reduce the risk and focusing on increasing the maturity and capabilities of the cybersecurity control. Earlier, each of the NIST cybersecurity subcategories had an internal cybersecurity control designed to meet the subcategory objective. The program as discussed in Chapter 3 is in its infancy and, therefore, on the low end of the maturity scale. Initially, the focus is on getting the cybersecurity control maturity of each subcategory to ...

Get Building a HIPAA-Compliant Cybersecurity Program: Using NIST 800-30 and CSF to Secure Protected Health Information now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building a HIPAA-Compliant Cybersecurity Program: Using NIST 800-30 and CSF to Secure Protected Health Information by Eric C. Thompson

8. Increasing Program Maturity

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly