Latest News

Electronic Healthcare Records

Hospital Execs Reveal Security Concerns

Howard Anderson  •  August 18, 2010

When it comes to security and privacy, what worries hospital risk managers, compliance officers and health information managers?

Governance

4 Mass. Hospitals Investigating Breaches

Howard Anderson  •  August 17, 2010

Four community hospitals in Massachusetts are investigating breaches related to the dumping of thousands of unshredded paper records from pathology practices.

Encryption & Key Management

What Should BlackBerry Do?

Tracy Kitten  •  August 17, 2010

How much communications transparency should consumers and corporations be expected to make available to governments?

Electronic Healthcare Records

HIEs: Federalism vs. States' Rights

Howard Anderson  •  August 17, 2010

As federal regulators attempt to pave the way for the nationwide sharing of health information, the issue of states' rights is bubbling up.

3rd Party Risk Management

HITECH Compliance: 5 Critical Security Issues

Tom Field  •  August 11, 2010

Brian Lapidus of Kroll on what healthcare organizations need to do to comply with the security provisions of the HITECH Act.

Governance

Lessons Learned From Recent Breaches

Howard Anderson  •  August 10, 2010

Those hoping to prevent major health information breaches should pay attention to valuable lessons to be learned from recent breach incidents reported to federal regulators.

Professional Certifications & Continuous Training

Same Goal, Differing Approach to Certification

Eric Chabrow  •  August 10, 2010

The role of trainers in awarding IT security certifications.

ACH Fraud

Inside the Verizon Breach Report

Tom Field  •  August 9, 2010

Investigator Wade Baker on why insider crimes are up - where and how they're occurring.

Professional Certifications & Continuous Training

Defining the Term Certification

Eric Chabrow  •  August 4, 2010

When Should Infosec Trainers Certify Their Students?

Governance

Desktop Computer Thefts Affect 39,000

Howard Anderson  •  August 2, 2010

Montefiore Medical Center in New York is notifying 39,000 patients about two recent incidents involving the theft of unencrypted desktop computers.

Governance

A Win for Privacy Advocates?

Howard Anderson  •  August 2, 2010

Privacy advocates are hoping pending revisions in the HITECH Act breach notification rule will lead to the dropping of a controversial 'harm standard.'

HIPAA/HITECH

Final Breach Notification Rule on Hold

Howard Anderson  •  July 30, 2010

Federal regulators are going back to the drawing board before issuing a final version of the HITECH Act breach notification rule.

Governance

Compliance: 'I Might Get Breached, But I Will Get Fined'

Tom Field  •  July 30, 2010

Interview with Tim Harvey, CEO of Perimeter E-Security, on Balancing Security and Compliance

Endpoint Security

Living with IT Security Breaches

Eric Chabrow  •  July 29, 2010

Former NSA CIO Preston Winter on Defending Penetrations from Within

Governance

Massachusetts Breach: An Update

Howard Anderson  •  July 28, 2010

An update on a recent Massachusetts breach incident shows that even driving a truck can have security risks.