Blog

Road to HIPAA Compliance: Policies and Procedures

by KirkpatrickPrice / December 19, 2022

How Policies and Procedures Can Help You Ace an OCR Audit This webinar gives insight into the purpose and the concepts of effective policies and procedures and what the Office for Civil Rights (OCR) is looking at when evaluating policies and procedures. Updated, well-documented and implemented policies and procedures are the basics of any regulatory compliance program. Outdated policies and procedures are the most common gap that we see when…

PCI Readiness Series: PCI Requirement 8

by KirkpatrickPrice / December 19, 2022

This session in our PCI Readiness Series dives into PCI Requirement 8, specifically about identifying and authenticating access to system components. In this webinar, we will cover strong, secure passwords in transmission and storage, disabling accounts for terminated employees and unused accounts, changing default passwords, and disabling generic accounts with shared usernames and passwords. PCI Requirement 8 establishes non-refutability and authentication security, covers all systems and applications, and has…

Road to HIPAA Compliance: Breach Notification

by KirkpatrickPrice / December 19, 2022

What is the Breach Notification Rule? In this session, we discuss the Breach Notification Rule, define what a data breach is, discuss how long you have to report a breach, who to tell, and what to tell them. We also discuss strategies for reducing the risk of a data breach. Data Breach FAQs What is a breach? A breach is the acquisition, access, use, or disclosure of unsecured protected…

PCI Readiness Series: Scoping the Assessment

by KirkpatrickPrice / December 19, 2022

How to Scope a PCI Assessment Knowing how to scope a PCI assessment is crucial to your organization’s compliance. Defining a correct scope is the first and most important step. Scoping is so vital that assessors should not even begin the assessment until they have fully determined the scope. So, how does your organization determine if an asset is in scope? Any people, process, or technology that stores, processes, or…

PCI Readiness Series: PCI Requirement 7

by KirkpatrickPrice / December 19, 2022

What is PCI Requirement 7? In this webinar, our PCI expert spotlights PCI Requirement 7, which states, “Restrict access to cardholder data by business need-to-know.” This requirement is focuses on authorization and establishing a program of least privileges. PCI Requirement 7 supports the implementation of many of the controls in PCI Requirement 8. In this webinar, we'll discuss several elements of creating a strong access control system, such as…

Road to HIPAA Compliance: Policies and Procedures

PCI Readiness Series: PCI Requirement 8

Road to HIPAA Compliance: Breach Notification

PCI Readiness Series: Scoping the Assessment

PCI Readiness Series: PCI Requirement 7

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.