Fresh off 11 months as a part-time adviser to federal regulators, John Glaser, CIO of Partners Healthcare in Boston, is making data encryption a top-priority task and urging others to do the same.
Shifting from desktop PCs to thin clients can provide a more secure way for clinicians to access electronic health records, says Dee Cantrell, R.N., chief information officer at Emory Healthcare in Atlanta.
For physician group practices, security should not be an afterthought to operational issues when implementing electronic health records, says security expert Jack Daniel of Concordant.
Just how common are information breaches at hospitals? That depends on which survey you believe.
For example, a survey of 220 hospitals released April 20 found that 84 percent of U.S. hospitals have at least one breach incident a year, and 42 percent have at least 10 incidents. Earlier this month, another survey...
Healthcare organizations need to take steps to ensure their business associates understand their requirements under the HITECH breach notification rule, says Lauren Kovach of IBM Security Services.
When it comes to keeping healthcare information private and secure, hospitals that focus primarily on regulatory compliance are making a huge mistake, says Sharon Finney, corporate data security officer for the 37-hospital Adventist Health System.
Widespread implementation of encryption is a top priority at Stanford Hospital and Clinics, thanks, in large part, to the "safe harbor" in the HITECH breach notification rule, says Michael Mucha, information security officer.
Shifting from desktop PCs to thin clients can provide a more secure way for clinicians to access electronic health records, says Dee Cantrell, R.N., chief information officer at Emory Healthcare in Atlanta.
In an interview, the CIO of the integrated delivery system, which is affiliated with Emory University and...
Although many healthcare organizations are making broader use of encryption, they're typically taking a "wait and see" approach to encrypting their clinical databases, citing serious concerns about an adverse impact on performance.
Two consultants, however, argue that hospitals and clinics can apply encryption on...
A risk analysis should not be an annual event, but rather an ongoing process that's revisited whenever a healthcare organization adds or changes any application. That's the advice of Kenneth Bradberry, vice president and chief technology officer at ACS, a consulting firm recently acquired by Xerox.
UAB Health System in Birmingham, Ala., is tackling a long list of risk management projects, including updating intrusion detection and prevention systems.
In an interview, Terrell Herzig, HIPAA security officer, outlines priority projects and key lessons learned, including:
Expanding the use of...
Michael Frederick, chief information security officer at Baylor Healthcare System in Dallas, is using the HITRUST Common Security Framework to help ease the task of complying with multiple regulations.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.