The National Association of Insurance Commissioners (NAIC) has announced a multi-state examination of Anthem and its affiliates. On January 29, 2015, Anthem, Inc. discovered a cyber attack on Anthem’s IT systems. See our article here.
NAIC expects all states and territories to participate in the examinations. The NAIC Cybersecurity Task Force will monitor the examinations, update its best practices, and determine from the findings if regulatory action is needed.
All group health plans should take note of the Anthem breach and evaluate their cyber security policies and HIPAA compliance efforts.