Blog | 24By7Security | HIPAA compliance

Filter by
Tags
Authors
Show all

Security policies and procedures reduce risk and are the foundation of a compliant cybersecurity program

September, 12 2023

Security Policies: It’s a Dirty Job, But Somebody’s GOT to Do It!

Security policies and procedures reduce risk and are the foundation of a compliant cybersecurity program Of the dozens[…]

Data breaches in the healthcare industry run the gamut in terms of geography, type of organization, size of breach, and nature of breach

July, 18 2023

The High Cost of Incomplete Compliance

HIPAA Compliance That is Less Than 100% is Not Compliance At All

The responsibility for meeting healthcare cybersecurity challenges is not only on the shoulders of healthcare organizations, including providers, health plans, and business associates, who must comply with HIPAA Security Rule requirements to protect patient data.

July, 11 2023

Healthcare Cybersecurity Challenges: A Broken Record

Side A: Ransomware, Hackers / Side B: Aging Medical Devices, Unpatched Software Health records are low-hanging fruit[…]

A financial penalty and corrective action plan are the expected outcome of the OCR investigation into the NextGen Healthcare hack in the next several years

May, 23 2023

NextGen Healthcare Hack Affects More Than One Million Patients

Federal lawsuit charges company with failure to follow federal and industry guidelines for protecting data The Office[…]

A suspected ransomware attack brought the venerable organization to its knees the night of Thursday, February 2, 2023

March, 7 2023

Possible Ransomware Attack Takes Hospital Offline for Two Weeks in February

Tallahassee Memorial data breach another upset for healthcare; actions your hospital can take now Tallahassee Memorial[…]

January, 10 2023

Policies and Procedures Required by HIPAA

CISOs of healthcare organizations are responsible for policies and procedures that safeguard the security and privacy[…]

HITRUST for healthcare offers the choice of a readiness assessment or a validation assessment. Following this decision, organizations can choose one of three levels of HITRUST assessment based on their individual needs and objectives.

December, 6 2022

To HITRUST … or Not to HITRUST

Here’s help making the right decision for your healthcare organization Whether you operate a large hospital or a small[…]

In July, August, and September of 2022, the OCR published four press releases detailing misbehavior that cost 16 errant healthcare providers more than $1.9 Million in HIPAA violation penalties.

November, 22 2022

HHS OCR Spent Summer Imposing HIPAA Violation Penalties on Healthcare Providers Large and Small

$1.9 Million in fines, plus mandatory corrective actions, imposed against 16 HIPAA violators in just three months A fun[…]

Corrective actions are also recommended, for slightly different reasons, by the National Institute of Standards and Technology in its NIST SP 800-100 Information Security Handbook.

March, 29 2022

Improving Your Security through Corrective Actions

Experience has made us all true believers in cybersecurity and solid information security programs. We understand that[…]

This week is Patient Safety Awareness Week, created to raise security awareness among healthcare organizations and their employees, with special emphasis on securing patient data.

March, 15 2022

Cyber Safety is Patient Safety

Cyber Safety is Patient Safety is the mantra this year during Patient Safety Awareness Week March 13 to 19, 2022. This[…]

Cybersecurity and Compliance Blog

Ranked in Top 5 CISO Blogs 2022!