Several insights into what the OIG review could mean for you and your company. Additionally Redspin shares some recommendations.
As an independent provider of security assessments, we are keenly aware of the 2 primary drivers of an objective security assessment - security or compliance. Roughly, these two views of risk management can be thought of as similar in some ways but differing exponentially in others.
Account takeover fraud remains a major problem for financial institutions and small businesses that are impacted.
Now this week, we learn the HHS Inspector General has audited HIT Standards, privacy protection under HIPAA, and other security measures at CMS and the ONC. Their conclusion? "OIG found weaknesses in the two HHS agencies entrusted with keeping sensitive patient records private and secure." Such weaknesses included lax oversight and insufficient standards for healthcare providers.
Dan Berger's summary of the OCR/NIST HIPAA Security Conference in Washington D.C. 2011.
Dan Berger's comments on the Federal Health IT Strategic Plan, 2011-2015 in advance of the NIST/OCR HIPAA Security Rule Conference in Washington, D.C.
We checked one of their systems. And recorded the output for you to judge.
If you are an eligible hospital then meaningful use is probably on your mind. Here is a walk through for how to apply.
Sony fell victim to a known vulnerability and now your credit card information may have been compromised.