Information security and privacy work in healthcare environments often requires a depth of specialized knowledge and competency that can be validated through the help of professional credentialing, says CISO Sean Murphy.
Information security and privacy work in healthcare environments often requires a depth of specialized knowledge and competency that can be validated through the help of professional credentialing, says CISO Sean Murphy.
The No. 1 reason Congress, after five years of intensive efforts, has yet to enact comprehensive cybersecurity legislation is differences over how much liability protection to grant businesses to get them to share cyberthreat information.
A free webinar will provide an overview and analysis of the results of the Healthcare Information Security Today survey, which finds that most organizations lack a documented infosec strategy.
A class action lawsuit against Stanford Hospital and Clinics and two business associates related to a 2011 breach affecting 20,000 patients has been settled, with the BAs picking up most of the tab.
The basis of any good security program is conducting a thorough and timely risk analysis; but that can be difficult for smaller healthcare organizations. That's why a federal agency will soon unveil an app designed to make the process easier.
To ensure their business associates have conducted a thorough risk assessment and other HIPAA compliance tasks, covered entities must have a solid vendor management program in place, says security expert Mac McMillan.
Many healthcare entities and business associates are average at best in their information security efforts. Other are failing. See what they're doing wrong, and how they can improve their grades.
What started as an investigation of a minor breach at a county health department in Washington state has ended in a HIPAA monetary settlement with federal regulators.
The Obama administration's proposed fiscal 2015 budget would fund a new health IT safety surveillance program, as well as help bolster health data privacy and security activities.
The next round of HIPAA compliance audits by federal regulators are likely to focus on three key areas, says compliance expert David Holtzman, who until recently worked at the agency that enforces HIPAA.
Highlights at the recent HIMSS Conference included revelations about plans for resuming HIPAA compliance audits and groundbreaking discussions about medical device security issues.
An address by FBI Director James Comey at the RSA security conference seems to equate civil liberties and privacy. But when he offers an example of balancing Americans' rights with cybersecurity, he mainly refers to the civil liberties, not privacy.
Getting the healthcare sector prepared for new and emerging cybersecurity threats is a new focus this year for the Office of the National Coordinator for Health IT, says its chief privacy officer, Joy Pritts.
The Department of Health and Human Services is taking the first steps toward resuming the HIPAA compliance audit program this year, examining business associates as well as covered entities. Find out what's planned.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.