Blog Archives

Surfing the Wave of New Privacy Regulations | California’s CCPA Explained

A wave of new state privacy regulations has healthcare entities scrambling to stand up programs to address patient information protections. On the heels of ground-breaking Global Data Protection Regulation (GDPR) mandates out the EU, U.S. regulators in over 20 states are starting to incorporate privacy controls including new and proposed legislation. One of the most prominent and comprehensive new privacy laws is the California Consumer Privacy Act (CCPA). This blog post provides a quick summary of the CCPA law and implications for healthcare entities. Read More

Published On March 23, 2020

Coronavirus Implications for Healthcare Security Programs

On March 5th, HIMSS announced the cancellation of their flagship national healthcare conference just days before the event was set to take place in Orlando, Florida. Just a few days earlier, the state of Florida had declared a state of emergency surrounding the global outbreak of the COVID-19 Coronavirus which has prompted cascading economic and business operational impacts for healthcare entities. Read More

Published On March 9, 2020

Confronting Digital Health Privacy Risks via the New NIST Framework

Healthcare has become a prime target for malicious actors bent on profiting from the resale and reuse of patient information. Healthcare entities are scrambling to sure up security controls for their own organizations and third-party business partners as the sprawl of patient information continues to drive widespread data breach events. Read More

Published On February 10, 2020

Got Certs? The Pros and Cons of Enterprise Security Certifications

Healthcare has become a prime target for malicious actors bent on profiting from the resale and reuse of patient information. Healthcare entities are scrambling to sure up security controls for their own organizations and third-party business partners as the sprawl of patient information continues to drive widespread data breach events. Read More

Published On January 21, 2020

A Vision for 2020: Top 10 Healthcare Security Trends

The vision for 2020 healthcare security and privacy is clouded with emerging security threats, compliance and enforcement activity, and rapidly evolving business models and regulatory landscapes. However, we can also see many opportunities on the horizon this year and beyond to improve the industry’s privacy and security protections of healthcare organizations and patient information. Read More

Published On January 13, 2020

A New Ransom: Hackers Say Pay Up or We Will Release Your Data

A recent publication from KrebsOnSecurity highlights an alarming shift in cybercriminals approach to getting paid for successful ransomware infections. Operators of the new strain of Maze ransomware are starting to release sensitive information of ransomware victims that fail to pay up. Healthcare entities subject to strict HIPAA breach notification requirements may end up with a double-whammy of inaccessible Electronic Health Records and regulatory compliance action. Read More

Published On December 20, 2019

The Impact of OCR’s New HIPAA Penalty Limits

A new structure for HIPAA violation Civil Monetary Penalties (CMP) was announced by the OCR on April 26, 2019. This change greatly reduces the financial risk of HIPAA breach violations for covered entities that can demonstrate updated security risk management plans, policies and procedures for sensitive patient data. Read More

Published On November 27, 2019

Bursting at the Seams: Security Audit Response Overload

Every pipeline has a capacity limit. Problems begin when the flow is clogged or overwhelmed. First as a small leak, then a rupture occurs where the whole pipeline is in jeopardy. Only we are not talking about fluids drowning us, it is the increasing volume of Healthcare Security Audits. How can businesses meet the security demands of healthcare clients and provide meaningful and timely responses to their security audit questionnaires? Read More

Published On November 19, 2019

BLOG

Surfing the Wave of New Privacy Regulations | California’s CCPA Explained

Coronavirus Implications for Healthcare Security Programs

Confronting Digital Health Privacy Risks via the New NIST Framework

Got Certs? The Pros and Cons of Enterprise Security Certifications

A Vision for 2020: Top 10 Healthcare Security Trends

A New Ransom: Hackers Say Pay Up or We Will Release Your Data

The Impact of OCR’s New HIPAA Penalty Limits

Bursting at the Seams: Security Audit Response Overload

Featured Blog Posts

The Future of HIPAA Regulations

Cloud Security Risk Assessments Instrumental in Transforming Healthcare Organizations’ Cloud Security Posture

Strengthening Medical Device Resiliency and Supply Chain Risk Preparedness in Clinical Settings

How to Build a Resilient Third-Party Risk Management Program

Find the right RITHM for you.