Recent Compliance, Risk Management, Security News

HIPAA Enforcement Happening in 2008

  • Published 02/19/2008
This just in, HIPAA is now being enforced to some extent. On the heels of the audit of a major healthcare organizations by DHHS' Office of the Inspector General (Piedmont Hospital, reported here), CMS has announced their intention to conduct their own reviews of 10-20 healthcare organizations, to determine their compliance to the HIPAA Security and Privacy regulations. CMS has hired PriceWaterhouseCoopers to conduct the reviews. CMS will post on their website a checklist of items that they will be reviewing for.

After years of zero enforcement (enforcement and penalties were initially conceived of as being complaint-based), healthcare organizations now have two groups of regulators to worry about. The CMS reviews will be aimed at organizations which CMS calls "filed against entities", which are organizations that have experienced complaints.

For healthcare IT folks, this means taking compliance with HIPAA a little more seriously than has generally been the case. » Read More
View News Archive

Recent Articles

Joint Commission Updating Information Management Standards for 2009

The Joint Commission, which is a non-profit organization that publishes standards for healthcare organizations and runs  an accreditation program, is updating some of their standards for 2009, including some which impact information security.

NIST SCAP

NIST SCAP, protocol and standard to ease data gathering for security management,  risk management, and compliance measurement.

Automated Compliance Checking

New developments in NERC/FERC compliance, control system security

Risk Management Resources

Here's a list of useful websites and blogs dealing with risk management issues.

No articles found.


Popular Authors

No popular authors found.

Popular Articles

No popular articles found.