Using your HIPAA Risk Analysis

by Sarah Harvey / June 14, 2023

Congratulations! You’ve completed your initial comprehensive HIPAA risk analysis, no easy task. You’ve gone through the process and planned for and scoped your environment. You’ve identified your risks, threats, and vulnerabilities, and all of the associated requirements necessary to conduct and complete a HIPAA risk analysis. So, now what? Let’s focus on five important steps for using your HIPAA risk analysis; Internal Reporting, Management Responsibilities, Corrective Action, Monitoring, and Auditing.…

Best Practices for Managing Firewall and Router Security

by Sarah Harvey / June 14, 2023

When you look at the threat landscape today and the organizations that have experienced a data breach (Target, Home Depot, Arby’s), they all have a common denominator – they were all compliant. They had been checking the boxes like they were asked to do. So, when it seems that compliance isn’t enough, how can we ensure that we are secure? Organizations today should use these examples as motivation to focus…

Conducting your HIPAA Risk Analysis

by Sarah Harvey / June 14, 2023

A couple of weeks ago, we posted about the planning process for a HIPAA risk analysis. This process included determining whether the proper resources are available, the importance of defining scope, creating or using ePHI workflows, and compiling asset lists. The next step in the process is to perform the actual risk analysis. Let’s talk about the actual elements for conducting your HIPAA risk analysis and define some common terms…

Planning your HIPAA Risk Analysis

by Sarah Harvey / June 14, 2023

Preparing for HIPAA compliance can be an overwhelming undertaking if you’re uncertain where to begin. Starting with a formal risk analysis can help you determine how your current security posture stands up against HIPAA laws while creating a roadmap leading you towards compliance. Why is HIPAA Risk Analysis Important? Why is risk analysis important? First and foremost, a risk analysis is important because it is a requirement under the HIPAA…

Make Cyber Risk a Priority with these Six Tips

by Sarah Harvey / June 14, 2023

Cyber risk has become a hot button issue of today, especially among business owners and stakeholders. With the threat landscape constantly changing and evolving, it’s challenging to stay ahead of these threats and be prepared to ensure the privacy and security of the data we’re responsible for. We can all help each other strive towards common goals of cybersecurity and privacy by starting with the following six tips for making…