The Department of Health and Human Services (HHS) is the official source for all things HIPAA, and, conveniently,...
they have some great information about the HIPAA Administrative Simplification Rules, which provides not only high-level information about each of the rules, but also links to the statutes and all current updates -- including the changes as a result of HITECH passing in February 2009.
Additionally, SearchSecurity.com has produced several great resources as well. In particular, check out their HIPAA training, audit and requirement checklist. In the full list of HIPAA resources you'll find all sorts of useful information, including more articles by yours truly, as well as some potentially useful tidbits like this article on the FTC's decision to extend HIPAA breach notification to Web-based health repositories.
Finally, HIPAA.org has some great information and resources as well.
For more information:
Related Q&A from David Mortman
While IT security consultancies can be helpful when trying to find flaws in an information security management framework, there are ways to do it ...continue reading
PCI DSS audits can be a lot easier if the scope is narrow. Learn how to consolidate and store sensitive data in order to best reduce PCI DSS security...continue reading
When hiring an information security team member, how important is a certification in information security? Learn how to talk to executives about ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.