The HHS Office for Civil Rights has started its next phase of audits of covered entities and their business associates. The 2016 Phase 2 HIPAA Audit Program will review the policies and procedures adopted and employed by covered entities and their business associates to meet selected standards and implementation specifications of the Privacy, Security, and Breach Notification Rules. 

The Office for Civil Rights (OCR) has recently announced the release of a new set of FAQs that seeks to address whether business associates of a HIPAA covered entity may block or terminate access by the covered entity to the protected health information maintained by the business associate for or on behalf of the covered entity.

Conducting or reviewing a security risk analysis to meet the standards of Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule is included in the meaningful use requirements of the Medicare and Medicaid EHR Incentive Programs.

Join Webex this Wednesday, November 16 at 1:00pm ET for a Security Risk Assessment (SRA) Tool webinar. This webinar will discuss the importance and unique considerations for cyberthreats in pediatric health care settings, followed by a SRA Tool walkthrough. The webinar will be recorded and made available after the event. Questions can be directed to can be directed to COCIT@aap.org.

This two session roundtable series brought together CIOs, CISOs, and other IT leadership from health centers to discuss strategic investments in cybersecurity, including those that can leverage recent ARP funding but sustain beyond the coming years. Participants had the opportunity to connect with each other and subject matter experts about implementation, considerations, and the future of cybersecurity and data protection in health centers.

This two session roundtable series brought together CIOs, CISOs, and other IT leadership from health centers to discuss strategic investments in cybersecurity, including those that can leverage recent ARP funding but sustain beyond the coming years. Participants had the opportunity to connect with each other and subject matter experts about implementation, considerations, and the future of cybersecurity and data protection in health centers.

The United States Office for Civil Rights (OCR) is holding a free Webinar for health information technology (HIT) stakeholders on Health Insurance Portability and Accountability Act of 1996 (HIPAA) privacy and security issues related to novel coronavirus (COVID-19) and recent OCR actions related to the pandemic.

The U.S. Department of Health & Human Services (HHS), Office for Civil Rights (OCR) has developed a Cyber Security Checklist and a corresponding Cyber Security Infographic that explains the steps for a HIPAA covered entity or its business associate (the entity) to take in response to a cyber-related security incident. 

74% of Healthcare organizations report leveraging the Cloud to achieve financial savings and operational efficiencies. However, recent findings show over 60% of these organizations are experiencing Cloud adoption challenges and Security anxiety. It is essential for Healthcare organizations to overcome these challenges as there is a much larger digital transformational trend ahead, where Cloud will become a crucial component of patient care innovation.

Join Healthcare IT veterans from Microsoft & Synoptek, as they discuss the future of Cloud for Healthcare and best practices to help you overcome Cloud challenges and achieve higher levels of operational efficiency, security, and HIPAA compliance in the Cloud.

The National Institute for Standards and Technology (NIST) and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) are pleased to co-host the 9th annual conference, Safeguarding Health Information: Building Assurance through HIPAA Security, on October 19-20, 2016 at the Capital Hilton, Washington, D.C.

The conference will explore the current healthcare cybersecurity landscape and the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. It will highlight the present state of healthcare cybersecurity, and practical strategies, tips and techniques for implementing the HIPAA Security Rule.