[prev in list] [next in list] [prev in thread] [next in thread] 

List:       isn
Subject:    [ISN] A Review of Common HIPAA Technical Safeguards
From:       InfoSec News <alerts () infosecnews ! org>
Date:       2015-06-26 18:36:05
Message-ID: alpine.DEB.2.02.1506261835550.2057 () infosecnews ! org
[Download RAW message or body]

http://healthitsecurity.com/news/a-review-of-common-hipaa-technical-safeguards

By Elizabeth Snell
Health IT Security
June 26, 2015

HIPAA technical safeguards are just one piece of the larger health data 
security plan that covered entities and their business associates must put 
together. However, it is a very important aspect.

Over the next few weeks, HealthITSecurity.com will discuss some common 
examples of all three HIPAA safeguards, and how they could potentially 
benefit healthcare organizations. Not all types of safeguards are 
appropriate or necessary for every covered entity. But by having a 
comprehensive understanding of what is required by HIPAA and the HITECH 
Act, and how various safeguards can be used, organizations will be able to 
identify which ones are most applicable. From there, they can create and 
implement the right data security protections for their daily workflow and 
ensure they maintain HIPAA compliance.

As previously mentioned, HIPAA technical safeguards are an important part 
to keeping sensitive health data secure. Whether a small primary care 
clinic is debating health data encryption options or a large HIE is 
considering BYOD for employees, understanding the basics of HIPAA 
technical safeguards is essential.


What are HIPAA technical safeguards?

The HIPAA Security Rule describes technical safeguards as ""the technology 
and the policy and procedures for its use that protect electronic 
protected health information and control access to it." However, an 
important note is that the Security Rule does not require specific 
technology solutions. Rather, healthcare organizations need to determine 
reasonable and appropriate security measures for their own needs and 
characteristics.

[...]



--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/

[prev in list] [next in list] [prev in thread] [next in thread]