PYA has released a white paper, Navigating the Intersection of Interoperability and API Security in Healthcare, which helps healthcare leaders understand the vulnerabilities associated with the increased use of APIs to achieve interoperability.
As of May 1, 2020, interoperability—the ability of information systems to access, exchange, interpret, and cooperatively use data—is a requirement by the Centers for Medicare & Medicaid Services (CMS) to enable provider and patient access to health information. Interoperability relies on the use of application programming interfaces (APIs), which are software codes or system protocols that make it work.
Given the requirement by CMS and the recognized value of interoperability, the use of APIs in healthcare has vastly increased, making healthcare organizations’ sensitive information prime targets for data breaches due to faulty, vulnerable, or hacked APIs.
Cybercriminals exploit known vulnerabilities, yet the majority can be easily protected. With a thorough understanding of the risks, the prioritization of security, and the appropriate implementation of security standards and protocols, the easy exploitation of APIs can be avoided.
PYA has 30 years of experience with information technology (IT) security assessments and mitigation, and we are ready to help your organization. Our experts partner with clients to provide IT risk management, process assessment, and data governance, and we would be happy to assist you. Please contact us at the emails below or by calling (800) 270-9629.