HIPAA IT Security | IT Service & Support | Phoenixville, Philadelphia, PA

Phishing Attack Results in $400,000 HIPAA Breach Fine

A Denver, Colo.-area network of public health clinics paid a $400,000 HIPAA breach penalty after a phishing attack let a hacker gain access to employee email accounts and obtain electronic protected health information (ePHI) of 3,200 patients, federal authorities said today. Metro Community Provider Network (MCPN) – which provides primary [...]

HIPAA TIPS: Mobile Device Compliance Part 5

Install and enable a firewall What is a firewall? A personal firewall can protect against unauthorized connections by intercepting incoming and outgoing connection attempts and blocking or permitting them based on a set of rules. Why should you enable or install a firewall? When you enable or install a firewall, [...]

HIPAA TIPS: Implementing a Security Management Process – Part 4

Attest for Meaningful Use Security-Related Objective You can register for the Meaningful Use Programs anytime, but to attest, you must meet the Meaningful Use requirements for an EHR reporting period. So, only attest after you have conducted your security risk analysis (or reassessment), corrected any identified issues, and documented those [...]

SaaS or on-premises? The security challenge for healthcare applications

The healthcare industry faces a difficult paradox when it comes to IT services. Healthcare has some of the most tightly governed restrictions on how information is managed, but it runs the risk of not delivering services effectively enough if it can’t access modern IT service options. There are pros and [...]

HIPAA TIPS: Mobile Device Compliance Part 4

Disable and do not install or use file sharing applications What is file sharing? File sharing is software or a system that allows individual users of the Internet to connect to each other and trade files. Why should you disable and not install or use file sharing applications? File sharing [...]

HIPAA TIPS: Implementing a Security Management Process – Part 3

Manage and Mitigate Risks Implement Your Action Plan Your action plan should address all five HIPAA security components. Follow your action plan and support ongoing efforts to identify, assess, and manage risks. Prevent Breaches by Educating and Training Your Workforce All of your workforce members — employees, volunteers, trainees, and [...]

HIPAA TIPS: Mobile Device Compliance Part 3

Install and activate remote wiping and/or remote disabling What is remote wiping? Remote wiping is a security feature that enables you to remotely erase the data on the mobile device if the device is lost or stolen. When you enable remote wipe feature on your mobile device, you have the [...]

HIPAA TIPS: Implementing a Security Management Process – Part 2

Document Your Process, Findings, and Actions The HIPAA Security Rule requires you to document your risk analysis and HIPAA-related policies, procedures, reports, and activities. Also, if you are attesting for Meaningful Use, you are required to retain all records that support attestation. Review Existing Security of ePHI (Perform Security Risk [...]

Category: HIPAA IT Security