Privacy and security primer: Tips from the August 2014 issue of Briefings on HIPAA
HIM-HIPAA Insider, August 18, 2014
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
- Get back to basics and pinpoint what risk analysis, assessment, and management truly mean so you can adequately identify current risks and protect your organization from potential breaches.
- The terms risk assessment and risk analysis are often used interchangeably, but are in fact two different things.
- A risk assessment is part of an overall risk management program and should be an ongoing process.
- A combination of checklists, forms, and ongoing walk-around security reviews can often help with an assessment, but won't suffice for your analysis.
- A risk analysis is more in depth than a risk assessment—but just because it needs to be in-depth doesn't mean you should make it overly complicated.
- Risk assessment and analysis lead to risk management, and confusing the steps or skipping some of them can be costly.
- When identifying risks, be aware of all of the federal and state requirements with which healthcare organizations must abide.
- A risk analysis must be tailored to meet the needs of your organization and should be based on its size, complexity, and capabilities.
- If making sense of each and every definition and concept in the HIPAA Omnibus Rule seems overwhelming, just remember you're not alone. Your peers in privacy, security, and even IT may be feeling the pressure as well.
- Although security officers facilitate the risk management process, they must present their findings to senior leaders so the process of implementing or updating controls can be approved.
Continue reading "Privacy and security primer: Tips from the August 2014 issue of Briefings on HIPAA" on the HCPro website. Subscribers to Briefings on HIPAA have free access to this article in the August issue.
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
Related Products
Most Popular
- Articles
-
- Don't forget the three checks in medication administration
- Note similarities and differences between HCPCS, CPT® codes
- CDC alert: Screen for international travel as Ebola cases increase
- Q&A: Primary, principal, and secondary diagnoses
- Differentiate between types of wound debridement
- Complications from immobility by body system
- The consequences of an incomplete medical record
- Nursing responsibilities for managing pain
- OB services: Coding inside and outside of the package
- Practice the six rights of medication administration
- E-mailed
-
- CDC alert: Screen for international travel as Ebola cases increase
- Capturing start and stop times for infusions
- Differentiate between types of wound debridement
- Life Safety Code Q&A: Ambulatory care soiled utility room
- Leadership training for charge nurses
- Helping Charge Nurses understand their leadership role (Part 2 of 3)
- Five ways to safeguard your patients' valuables
- Developing a Fall-Prevention Program
- Coding, billing, and documentation tips for teaching physicians, interns, residents, and students
- Coding tip: Watch for different codes for SI joint injections
- Searched