• E-mail
• Print
• RSS
• Buy It Now
• Reprints

Avoid unwanted surprises by conducting security risk assessments

Health Care Auditing Strategies, July 1, 2007

This is an excerpt from a member only article. To read the article in its entirety, please login.

Expert: "Do you know where your vulnerabilities are?" It's impossible to read any current health IT news without seeing reports of personal health information stolen from medical facilities. However, a weak privacy stance puts your facility at risk to appear in these headlines. One of the best ways to ensure that your facility's privacy compliance/audit program succeeds in the 21st century, without an errant security breach, is conducting a HIPAA information security risk assessment, according to Glenn Mueller, vice president and chief audit and compliance executive with Scripps Health in San Diego, who spoke during the recent Health Care Compliance Association's Compliance Institute in Chicago. "You really can't have privacy compliance without a really good information security program, because otherwise, you're just kidding yourself," Mueller said. Before you set out on either creating a new privacy compliance program or enhancing the one your facility already has, make sure you understand the HIPAA security regulations and what they mean.

This is an excerpt from a member only article. To read the article in its entirety, please login.

• E-mail to a Colleague
• Print
• RSS
• Archive
• Buy It Now
• Reprints / Permissions