HIPAA Security Risk Analysis
The HIPAA Security Risk Analysis, also known as a security risk assessment, is a fundamental process required by the HIPAA Security Rule. Health care providers, payers, clearinghouses and Business Associates are all required to conduct a HIPAA SRA. A limited-scope SRA is also required by the Meaningful Use (Advancing Care Information) program. For Meaningful Use, the SRA is required on an annual basis.
by Gary Pritts | Jul 30, 2014 | CMS Quality Payment Programs
(Editor’s Note: For the Stage 2 Rules effective 10/16/2015, the Privacy and Security Objective is now Objective #1) Eagle Consulting Partners is working with three clients, participants in the Medicare Meaningful Use program, to assist them with responses to... Read More
by Gary Pritts | Jul 27, 2014 | HIPAA
Incidents of cyber-espionage have shown consistent, significant growth and display a wider variety of threat actions than any other pattern discovered in Verizon’s recent 2014 Data Breach Investigations Report, which analyzed of over 63,000 confirmed security... Read More
by Gary Pritts | Jul 17, 2014 | HIPAA
Verizon’s 2014 Data Breach Investigations Report categorized 63,000 security incidents from 95 countries into 9 categories of causes. For the healthcare organizations surveyed, just 3 of those categories accounted for 73% of the security incidents experience—Theft and... Read More
by Gary Pritts | Jul 11, 2014 | HIPAA
Many healthcare organizations remain unaware that the Heartbleed bug can affect more than just websites and web servers. The bug, discovered separately by Neel Mehta and his team from Google Security in late March and later by Finnish security firm Codenomicon in... Read More
by Gary Pritts | Jul 3, 2014 | HIPAA
HHS Report of Breaches, 2011-2012, Part #2 The U.S. Department of Health and Human Services (HHS) recently submitted their Annual Report to Congress on Breaches of Unsecured Protected Health Information (PHI), for the calendar years 2011-2012. We blogged previously... Read More
