Blog

What are HIPAA Physical Safeguards?

by Sarah Harvey / December 22, 2022

The HIPAA Security Rule requires that business associates and covered entities have physical safeguards and controls in place to protect electronic Protected Health Information (ePHI). These safeguards provide a set of rules and guidelines that focus solely on the physical access to ePHI. Stephanie Rodrigue discusses the HIPAA Physical Safeguards What are Physical Safeguards? According to the Security Rule, physical safeguards are, “physical measures, policies, and procedures to protect a…

What Is The SOC 2 Security Principle?

by Sarah Harvey / December 22, 2022

History of the SOC 2 Trust Services Principles The Service Organization Control 2 (SOC 2) Report focuses on non-financial controls at an organization as they relate to security, availability, processing integrity, confidentiality, and privacy. These are also known as the Trust Services Principles. In 2014, the SOC 2 Trust Services Principles were updated, and one of the major changes was to the SOC 2 security principle. This change to the…

What Are HIPAA Administrative Safeguards to Protect ePHI?

by Sarah Harvey / December 19, 2022

One of the HIPAA Security Rule requirements is that covered entities and business associates have administrative controls in place. Once you have completed your HIPAA risk analysis, you should have a good idea of what administrative controls are appropriate for your organization to protect ePHI. Having administrative safeguards in place is important for both the prevention and mitigation of a data breach. Stephanie Rodrigue discusses HIPAA Administrative Safeguards What are…

Compliance Is Never Enough: Secure Software Development

by Sarah Harvey / February 20, 2023

What is an SDLC? What is a software/systems development lifecycle? What elements should be included in an SDLC? What is the most important phase in an SDLC? What are the different frameworks? What are the methodology terms? How do you validate compliance with an SDLC? Is the OWASP an SDLC? This webinar educates listeners with an overview on the individual phases and elements that should be included in an SDLC…

Lessons Learned from 2016 HIPAA Phase 2 Audits

by Sarah Harvey / May 9, 2023

Now, with more than 200 Phase 2 HIPAA desk audits completed, Devin McGraw, Deputy Director of the Department of Health and Human Services’ Office for Civil Rights, is encouraging healthcare organizations to take a look at lessons learned from the completed desk audits to prepare for future HIPAA audit enforcement. Understanding and navigating HIPAA audit enforcement has been on the minds of healthcare professionals for several years. Many covered entities…

What are HIPAA Physical Safeguards?

What Is The SOC 2 Security Principle?

What Are HIPAA Administrative Safeguards to Protect ePHI?

Compliance Is Never Enough: Secure Software Development

Lessons Learned from 2016 HIPAA Phase 2 Audits

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.