Former OCR Official Reveals Top Reason for Risk Analysis Audit Failure
A key reason for risk analysis failure during an audit by the HHS Office for Civil Rights is mistaking a technical or non-technical evaluation for a risk analysis.
Read MoreHIPAA Security Risk Analysis
The HIPAA Security Risk Analysis, also known as a security risk assessment, is a fundamental process required by the HIPAA Security Rule. Health care providers, payers, clearinghouses and Business Associates are all required to conduct a HIPAA SRA. A limited-scope SRA is also required by the Meaningful Use (Advancing Care Information) program. For Meaningful Use, the SRA is required on an annual basis.
Healthcare Industry Lagging in Cybersecurity (Part II)
A recent report on healthcare cybersecurity shows the industry 15th out of the 18 major US industries surveyed. In Part II of this two-part article, we investigate why healthcare organizations struggle to keep up with cybersecurity threats.
Read More
Healthcare Industry Lagging in Cybersecurity (Part I)
A recent report on healthcare cybersecurity shows the industry 15th out of the 18 major US industries surveyed. In Part I of this two-part article, we explore this poor rating and investigate why healthcare records are so appealing to criminals.
Read More
Molina Healthcare Online Breach Shows Need for Web Application Security
Molina Healthcare, a leading Medicaid and Affordable Care Act insurer across 12 states, recently suffered a security breach in which patient records were exposed on their online subscriber portal. The application flaw, which was present on the web for nearly a month... Read More
Security Risk Analysis deadline under ACI is 12/31/2017
The Security Risk Analysis (SRA) remains a requirement for the new Advancing Care Information (ACI) category of MIPS. A change enacted this year requires that the SRA be complete by 12/31/2017 under ACI, the Medicaid Meaningful Use program for physicians, and Hospital Meaningful Use programs. Practices who need outside help are advised to schedule their early to ensure that it is completed on time, and to avoid
Read More