As frequent targets of data breaches and handlers of highly sensitive and valuable data known by various terms such as protected health information (PHI) and electronic health records (EHR), healthcare organizations are in dire need of cybersecurity guidelines.