The Department of Health and Human Services conducts three types of audits or investigations involving privacy and security issues. But preparing for any of these inquiries requires similar steps, experts say.
Cyber Command Commander Gen. Keith Alexander tells a Senate panel that it's vital that Congress enact legislation giving the nation's critical infrastructure owners liability protection so they can share cyberthreat information with the government.
Mobility and privacy: Increasingly, organizations are forced to take actions on these topics. What are the latest legal and regulatory trends? Attorneys David Navetta and Ronald Raether share insights.
How are business associates affected by the HIPAA Omnibus Rule? Susan McAndrew of the HHS Office for Civil Rights outlines the relevant provisions and offers compliance advice to covered entities and their partners.
As distributed-denial-of-service attacks on banks continue, a U.S. electric utility also reportedly is a DDoS victim. Is this a sign that hacktivists are broadening their targets? Experts offer analysis.
The Obama administration is calling on the Chinese government to take serious steps to halt cyber-intrusions emanating from China that have resulted in the theft of intellectual property from American companies.
Homeland Security Secretary Janet Napolitano and NIST Director Patrick Gallagher tell Congress that industry, not the government, will take the lead in establishing IT security best practices for infrastructure operators.
The HIPAA Omnibus Rule could play an important role in improving the security of medical devices that store patient data, says an official with the agency that enforces HIPAA. Find out what part the rule could play.
Patient portals can fulfill some regulatory requirements related to providing individuals with electronic access to their medical records. But privacy and security concerns must be addressed, two experts say.