Health Information Management

Privacy and security primer: Tips from the January 2015 issue of Briefings on HIPAA

HIM-HIPAA Insider, January 26, 2015

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

  1. Don’t forget about performing vulnerability assessments and penetration tests, which are components of an overall risk assessment or analysis
  2. It’s not enough for organizations to know what is in place to protect their systems; they must also be aware of how safeguards operate and whether they are functioning correctly.
  3. Technical flaws on web applications, workstations, mobile devices, servers, and networks can often lead to data breaches, which is why organizations should focus on assessing and testing these systems.
  4. Failing to perform a vulnerability assessment or improperly performing one can lead organizations to make decisions about their overall risk without knowing the entire picture.
  5. Security officers may oversee vulnerability assessments, but some organizations opt to seek outside help to free up the security officer’s time or to ensure the work is objective.
  6. Performing a vulnerability assessment begins with determining which systems store critical information including PHI.
  7. Some healthcare organizations may rely on outside entities such as third-party software vendors or cloud providers to manage their web-based applications. However, organizations must be aware of whether the other entity is testing these system and to what extent.
Continue reading "Privacy and security primer" on the HCPro website. Subscribers to Briefings on HIPAA have free access to this article in the January issue.

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

    Briefings on APCs
  • Briefings on APCs

    Worried about the complexities of the new rules under OPPS and APCs? Briefings on APCs helps you understand the new rules...

  • HIM Briefings

    Guiding Health Information Management professionals through the continuously changing field of medical records and toward a...

  • Briefings on Coding Compliance Strategies

    Submitting improper Medicare documentation can lead to denial of fees, payback, fines, and increased diligence from payers...

  • Briefings on HIPAA

    How can you minimize the impact of HIPAA? Subscribe to Briefings on HIPAA, your health information management resource for...

  • APCs Insider

    This HTML-based e-mail newsletter provides weekly tips and advice on the new ambulatory payment classifications regulations...

Most Popular