S. 3904, the Healthcare Cybersecurity Act, was introduced on March 23, 2022 by Senators Bill Cassidy (R-LA) and Jacky Rosen (D-NV). It has six cosponsors. The Act requires the Cybersecurity and Infrastructure Security Agency (CISA) to assist the Department of Health and Human Services (HHS) in improving cybersecurity in the healthcare sector. CISA would be required to issue a sector-specific report on cybersecurity risks to the health care industry and the public health sector, especially for rural and small to medium healthcare assets, and to assist in training individuals in the health care sector in mitigation of cybersecurity risks.
The companion House bill, H.R. 8806, was introduced on September 13, 2022 by Jason Crow (D-CO-6) and cosponsored by Brian Fitzpatrick (R-PA-1).