Access "HIPAA privacy records and guidelines: How to achieve compliance"
This article is part of the February 2007 issue of Tips for navigating the maze of global security regulations
HIPAA Bridgework While we may argue the dental status of HIPAA ("HIPAA-ocricy," December 2006), good security practices in a health care environment equate to good business practices. Yes, HIPAA can be overbearing, but it can be used as a guideline for what is expected in an environment expected to be secure, if not by federal law, then at least by the patient community. To have a chief physician boast that his doctors don't believe in password security, that one doctor logs in for all the others, is unbelievable in this litigious society. Without password security, anybody who has access to the computer workstation--doctor, nurse, housekeeper or visitor--has the ability to change patient information in a medical chart without detection or tracking. This does not make for good medicine nor good business. What happens when an untoward medical outcome brings an investigation? Are you going to take the witness stand and say: "It might be my diagnosis, but maybe someone changed it. Someone might have altered the meds, I don't know. I cannot vouch for this ... Access >>>
Premium Content for Free.
Unified threat management: Fortinet's FortiGate 3600A
Fortinet's FortiGate 3600A
Unencrypted data at rest is data at peril.
New tools target ISPs to stop botnets
Security vendors are bringing the botnet fight to ISPs and carriers.
Intrusion Prevention: Juniper Networks' ISG 2000 with IDP
Juniper Networks' ISG 2000 with IDP
Endpoint Security: ScriptLogic's Desktop Authority 7.5
ScriptLogic's Desktop Authority 7.5
- At Your Service: February 2007 managed security services news
- Events: Information security conferences for February 2007
- Unified threat management: Fortinet's FortiGate 3600A
Security system products latest releases: Archsight, Finjan, Sophos
Get information, such as price, features, protection and support, on the most recently released versions of security products, such as Archsight logger and Sophos Security Suite.
Vulnerability scanning review: PatchLink's PatchLink Update 6.3
PatchLink's PatchLink Update 6.3
IPS by the Numbers
Choosing the right intrusion prevention technologies and products is a complex task, but following these six steps will make it simpler.
Information security blueprint for architecture and systems
A formalized security architecture diagrams how you should handle the changing threat and regulatory environments.
HIPAA privacy records and guidelines: How to achieve compliance
Learn how to achieve compliance with HIPAA certification and learn to avoid and fix risks with password security, privacy regulations, records, guidelines.
Cyber-Ark Enterprise Password Vault 4.0 product review
by Tom Bowers, Contributor
Product review of Cyber-Ark Enterprise Password Vault, a password management and security tool that manages passwords and controls privileged accounts.
Organizations sending data abroad must be prepared to comply with a slew of privacy and security regulations.
- Security system products latest releases: Archsight, Finjan, Sophos
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...