The Hacking Policy Council (“HPC”) submits the following comments in response to the New York Department of Health’s proposed addition to Section 405.46 to Title 10 NYCRR (“Hospital Cybersecurity Requirements). We thank the Department of Health for the opportunity to provide input towards this important proposal. The HPC is a group of industry experts dedicated to creating a more favorable legal, policy, and business environment for security vulnerability disclosure and management, good faith security research, penetration testing, bug bounty programs, and independent repair for security. From this perspective, we recognize the importance of cybersecurity for healthcare and are broadly supportive of the Department of Health’s efforts to update sector security practices

Download the Full Comments Here

Read Next

Blog Post
Government

EU Releases Digital Europe Work Programmes for 2025-2027

The European Commission and the European Cybersecurity Competence Centre both released Work Programmes, which describe funding for the EU’s Digital Europe Programme.

Blog Post
Government

Europe’s Evolving Security Strategy: Implications for U.S. Companies

Changes in the international order are forcing Europe to rethink its security strategy, particularly as traditional allies like the United States shift their focus to other global regions.

Blog Post
Government

Trump EO Aims to Streamline Critical Infrastructure Resilience

In a move aimed at decentralizing incident-preparedness and response, President Trump signed an EO seeking to streamline the feds role in responding to incidents, like cyber attacks, and place decision-makin with State and locals.