The Coalfire Blog
Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique IT GRC issues that impact the industries we serve, including Retail, Financial Services, Healthcare, Higher Education, Software, Government and Utilities.
The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.
Long-awaited HIPAA Omnibus Rule is Unveiled
January 21, 2013, Andrew Hicks, Director, Healthcare Practice Lead
As of January 17, 2013, the HIPAA Omnibus Rule has finally been released by the Department of Health and Human Services (HHS), which will modify the HIPAA privacy, security, and enforcement rules. The package of regulations, in regard to this long-overdue HIPAA Omnibus Rule, will officially be posted on the Federal Register on January 25, 2013 and will be put into effect on March 26, 2013. Covered entities and business associates will have until September 23, 2013 to comply with the new regulations. Read More
Posted in: Healthcare, HIPAA | 0 Comments
What We Learned at HIMSS12
March 16, 2012, Andrew Hicks, Director, Healthcare Practice Lead
A few weeks ago, more than 35,000 healthcare IT professionals and 1,100 exhibitors converged on Las Vegas. Some were there to go shopping for “HIT” or health information technology; others were there to sell it. The IT professionals from across the healthcare spectrum were there to meet with each other and regulators, and stay abreast of the rapid technological changes in the healthcare industry. This was an overwhelming event; a flood of information. It’s been a couple of weeks. Here’s a few of the HIMSS12 highlights: Read More
Posted in: Healthcare, HIMSS, HIPAA, HITECH | 1 Comments
The Budding Healthcare IT Spring
February 23, 2012, Rick Dakin, CEO, Co-founder and Chief Security Strategist
HIMSS12 is in full production in Las Vegas this week. Over 40,000 healthcare IT professionals and service providers have descended upon a conference that will set the direction for a new wave to technology innovations for the healthcare industry. Almost every booth has a sign that extolls the benefits of cloud-based services delivered through mobile devices. The promise to shake the industry to its core is a common theme. Read More
Posted in: healthcare, HIMSS, HIPAA, HITECH | 0 Comments
Is your HIPAA Security and HITECH audit program in order?
February 20, 2012, Andrew Hicks, Director, Healthcare Practice Lead
Healthcare organizations have been working towards HIPAA and HITECH compliance for a few years now. “Surprise” HIPAA compliance audits conducted by the OCR have begun and at Coalfire we’ve come across some gaps that have led organizations to fall short of their compliance initiatives. Read More
Posted in: Health, Healthcare, HIPAA, HITECH, IT | 0 Comments
Navis HITECH Complete Services Offer Protection for Medical Data
January 19, 2012, Mark Lucas, VP, Navis Services
We are proud to introduce Navis HITECH Complete, our first Navis service for the healthcare industry. For years, Navis has been providing IT governance, risk and compliance (IT GRC) solutions to merchants that need to comply with the PCI DSS and banks and credit unions that measure compliance with the GLBA regulations. Read More
Posted in: Healthcare, HIPAA, HITECH, IT, Navis, Security, Self-Assessment | 0 Comments