Michael Frederick, chief information security officer at Baylor Healthcare System in Dallas, is using the HITRUST Common Security Framework to help ease the task of complying with multiple regulations.
Hospitals preparing for a potential government audit of their HIPAA security rule compliance should "build a continual state of readiness," says David Wiseman, information security manager at Saint Luke's Health System, Kansas City, Mo.
Chief information security officers need to be able to translate technical projects into clear business terms, says Todd Fitzgerald, co-author of the book, "CISO Leadership Skills: Essential Principles for Success."
In an interview, Fitzgerald:
Describes the managerial skills that CISOs need;
Outlines how to...
The Office of the National Coordinator for Health Information Technology has posted a preliminary draft of its "Health IT Strategic Framework" that spells out, among other things, its proposed federal privacy and security strategies.
The American Hospital Association is calling on federal regulators to refine the "meaningful use" rule for the new Medicare and Medicaid electronic health records incentive program to make the security requirements more clear-cut.
The American Academy of Family Physicians has added its name to the list of organizations complaining about the proposed timeline for achieving the "meaningful use" criteria to qualify for federal EHR incentive payments.
White House Cybersecurity Coordinator Howard Schmidt isn't buying into the grim forecasts that the United States is ill prepared to defend the government's and nation's critical information assets from an immense virtual attack by political adversaries or cyber criminals.
"Historically, there's been a dichotomy between network security on the one hand and investigative process on the other," FBI Director Robert Mueller says. "It has been a great divide between us but needn't be."