Resource Overview

Health Centers are made up of many different levels of IT Security & Privacy expertise, both in terms of staff skills and organizational maturity. Resources are needed that help guide both beginners and more advanced staff and leadership to understanding how to best manage security and privacy risk management at their health center.

The overall objective is to create a privacy & security workbook tailored specifically to Health Centers that will provide them with implementable strategies for increasing their risk management skills including sections focused on:

Security Risk Pre-Assessment
Assessment of Security Risk
Security Risk Mitigation
Ongoing Security Risk Management

Health IT Privacy & Security Skill Sets

The Importance of Information Security for all Health Center Staff

Adam Kehler (OBS Global) & Nathan Botts (HITEQ) / Monday, May 8, 2017 0 69160

Since 2010, the healthcare industry has seen a remarkable increase in the use of technology in the administration and delivery in healthcare. This has led to a mass migration of data from paper charts and isolated systems to Electronic Medical Records (EMRs) and interconnected systems that transmit patient health and financial information across trusted and untrusted networks. While this has been a boon for the industry in its ability to provide timely information to those who need it the most, this transition has introduced a great deal of risk to the confidentiality and integrity of the information. Coupled with the fact that the information can be quickly monetized by criminals through insurance fraud and identity theft, the ecosystem is target-rich.

Acknowledgements

This resource collection was cultivated and developed by the HITEQ team with valuable suggestions and contributions from HITEQ Project collaborators.

Quick Feedback Request

Learning Progress

Highlighted Resources & Events

Health Center Case Examples in Coding and Documenting Social Risks: Introduction

Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

Health Center Case Examples in Coding and Documenting Social Risks: Introduction

Health Center Case Examples in Coding and Documenting Social Risks

Immigration Case Example | Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

Health Center Case Examples in Coding and Documenting Social Risks

Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

Health Center Case Examples in Coding and Documenting Social Risks

Intimate Partner Violence Case Example | Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

Health Center Case Examples in Coding and Documenting Social Risks

Roundup of Final Privacy and Data Sharing Considerations and Takeaways | HITEQ Learning Collaborative

Health Center Case Examples in Coding and Documenting Social Risks

Health Center Information Blocking Avenger

A HITEQ Center Training Badge

Health Center Information Blocking Avenger

SAMHSA 42 CFR Part 2 Revised Rule

HITEQ Highlights Webinar

SAMHSA 42 CFR Part 2 Revised Rule

Ransomware Alert and Guidance for Health Centers

Updated 10/29/2020 with Ransomware Alert Notification and Documentation from CISA

Ransomware Alert and Guidance for Health Centers

Cybersecurity Checklist for health center staff working remotely

Published June 2020

Cybersecurity Checklist for health center staff working remotely

Telehealth Policy during Coronavirus/ COVID-19 Pandemic

Updated 11/16/2020 with NIST Guidance on Securing the Telehealth Remote Monitoring Ecosystem

Telehealth Policy during Coronavirus/ COVID-19 Pandemic

Need Assistance?

Would you like more assistance regarding Privacy and Security strategies or support in using any of the included resource sets?

Request Support

Upcoming Events

The Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More