SEC440 Week 7

1020 words 5 pages
Show More
Health Insurance Portability and Accountability Act (HIPAA)
Compliance

By

Christopher Knight
SEC 440
16 Oct 2014

TO: Company Chief Security Officer
FROM: Security Engineer
DATE: 16 Oct 14
SUBJECT: HIPAA Security Compliance for Alba, IA Hospital

Any patient that is seen by a physician within the United States is to be protected by the “Health Insurance Portability and Accountability Act” or HIPAA, which was passed into law in 1996 (Jani, 2009). All health care facilities dealing with any protected health information (PHI) are to ensure that all physical/electronic processes are safeguarded from any third party entity or unauthorized personnel according to HIPAA. All health care data to include any medical insurance …show more content…

In conjunction with ensure that all data transfer is encrypted, we must also ensure that our network is also secure. Firewalls will be implemented on the network, to include our network gateways, in order to protect our confidentiality of sensitive information and network infrastructure from any unapproved access. All traffic, inbound and outbound, will be routed through the firewall to make sure that all packets are filtered to block any malware and to block any packets from any IP addresses that are deemed unauthorized and on the block list.
Administrative Measures For any HIPAA policy to fully work, the policy must have full support of the administration. Administration must completely back the policy that is set in place and implement it entirely to ensure that we are fully compliant with the Act. Administration will also appoint individuals specifically will have any access to patient medical information. This access will only apply to medical staff personnel, such as nurses, doctors, and medical technician; that have a need to know on patient information and must be used only for a medical reason. Administration must also ensure that annual training in conducted to ensure that all personal are trained on a regular basis on HIPAA. It is also the responsibility of administration to come up with procedures on how to deal with the release of patient information to third party entities such as insurance companies and government officials.

Related

  • Week 4 Assignment 2 Employement Law and Complaince Plan Paper
    927 words | 4 pages

    Law and Compliance Plan Shawna Bronson HCA/260 March 2, 2013 Employment Law and Compliance Plan A medical office needs to be compliant with employment laws; this will ensure they do not have lawsuits that could patiently put a company out of business. This also helps the offices run smoothly and free from errors. There are several employment laws a few of them are the American with Disabilities Act (ADA), the Employee Retirement Income Security Act (ERISA) and the Health Insurance Portability….

    Show More
  • Healthcare It Security and Cloud Computing
    2587 words | 11 pages

    system in your office?......... 9 Abstract Through the passage of the Patient Protection and Affordable Care Act of 2010, the federal government is pushing healthcare providers and hospitals to quickly move towards electronic documentation systems or be penalized for….

    Show More
  • Hcs 533
    1407 words | 6 pages

    49). Emergency Support Function #8 (ESF-8) is the health and medical services function. EST-8 provides medical, mental health, preventative health, and environmental services to those affected by a major disaster (Knouss, 2001). The months following Hurricane Katrina were filled with reconstruction of the facility and dispersing medical information….

    Show More
  • Hipaa Violation
    1559 words | 7 pages

    In the health care business, there are certain standards and laws that have been put in place to protect our patients and their personal health information. When a health care facility fails to protect their patient’s confidential information, the US Government may get involved and facilities may be forced to pay huge sums of money in fines, and risk damaging their reputation. The Health Insurance Portability and Accountability Act (HIPAA) was established in 1996. This Act was put into place….

    Show More
  • C156 Advanced Information Management
    3178 words | 13 pages

    C156 Advanced Information Management– Task 1 A2. Analysis of Technology Two organizations migrating to a common health information system would need a system that meets current regulatory requirements, meets the needs of the combined organization and their practice environment. The implementation of a common health information system would require an interdisciplinary group of forward thinking innovators, and an interoperable electronic medical record system that includes….

    Show More
  • Meaningful Use
    1613 words | 7 pages

    computerization. The heath care industry was no exception to the rise in the use of technology. These technologies are starting to allow health care practitioners to offer faster, and more efficient patient care than ever before. No doubt this is the right direction we expect health care to follow. Health information technology (HIT) is revolutionizing the way we interact with health-related data. One example of this is the obvious rise in….

    Show More
  • Team Assignment
    5645 words | 23 pages

    control user logon time restrictions along with defined session timeouts for user inactivity on portable or remote access connections. With the implementation of FIM, iTrust is capable of improving security, tightening access control, and auditing compliance while adhering to the HIPAA security access control specifications. SQL Injection Attack HIPAA requirements stipulate that covered entities must have procedures for safeguarding data. The new iTrust requirements will require a complex amount….

    Show More
  • We Can But Dare We
    2041 words | 9 pages

    We Can But Dare We: A Look into the Use of Social Media in Healthcare Sydney Sobocinski Chamberlain College of Nursing NR360: Information Systems in Healthcare September 2014 We Can But Dare We: A Look into the Use of Social Media in Healthcare In the world today, smartphones are becoming the “norm”, with basic phones becoming nearly obsolete in recent years. Pairing the overwhelming presence of social media with the rise in usage of smartphones brings to light an entirely new set of problems….

    Show More
  • General Security Policy
    4699 words | 19 pages

    appropriate level of security over the equipment and software used to process, store, and transmit that information. B. All policies and procedures must be documented and made available to individuals responsible for their implementation and compliance. All activities identified by the policies and procedures must also be documented. All the documentation, which….

    Show More
  • Computerized Management in Healthcare
    3764 words | 16 pages

    advantages of using information technology but this is gradually changing. In the July 2012 National Center for Health Statistics (NCHS) data brief, NCHS stated that by 2011, 55% of physicians had adopted an electronic health record (Jamoom et al., 2012). The Department of Health and Humans Services stated that the percentage of hospitals in the United States using some form of electronic health record has doubled in the last two years (Paddock, 2012). This is partially due to the passing of the 2009….

    Show More

Popular Essays