The Coalfire Blog
Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique IT GRC issues that impact the industries we serve, including Retail, Financial Services, Healthcare, Higher Education, Software, Government and Utilities.
The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.
What We Learned at HIMSS12
March 16, 2012, Andrew Hicks, Director, Healthcare Practice Lead
A few weeks ago, more than 35,000 healthcare IT professionals and 1,100 exhibitors converged on Las Vegas. Some were there to go shopping for “HIT” or health information technology; others were there to sell it. The IT professionals from across the healthcare spectrum were there to meet with each other and regulators, and stay abreast of the rapid technological changes in the healthcare industry. This was an overwhelming event; a flood of information. It’s been a couple of weeks. Here’s a few of the HIMSS12 highlights: Read More
Posted in: Healthcare, HIMSS, HIPAA, HITECH | 1 Comments
The Budding Healthcare IT Spring
February 23, 2012, Rick Dakin, CEO, Co-founder and Chief Security Strategist
HIMSS12 is in full production in Las Vegas this week. Over 40,000 healthcare IT professionals and service providers have descended upon a conference that will set the direction for a new wave to technology innovations for the healthcare industry. Almost every booth has a sign that extolls the benefits of cloud-based services delivered through mobile devices. The promise to shake the industry to its core is a common theme. Read More
Posted in: healthcare, HIMSS, HIPAA, HITECH | 0 Comments
Is your HIPAA Security and HITECH audit program in order?
February 20, 2012, Andrew Hicks, Director, Healthcare Practice Lead
Healthcare organizations have been working towards HIPAA and HITECH compliance for a few years now. “Surprise” HIPAA compliance audits conducted by the OCR have begun and at Coalfire we’ve come across some gaps that have led organizations to fall short of their compliance initiatives. Read More
Posted in: Health, Healthcare, HIPAA, HITECH, IT | 0 Comments
Navis HITECH Complete Services Offer Protection for Medical Data
January 19, 2012, Mark Lucas, VP, Navis Services
We are proud to introduce Navis HITECH Complete, our first Navis service for the healthcare industry. For years, Navis has been providing IT governance, risk and compliance (IT GRC) solutions to merchants that need to comply with the PCI DSS and banks and credit unions that measure compliance with the GLBA regulations. Read More
Posted in: Healthcare, HIPAA, HITECH, IT, Navis, Security, Self-Assessment | 0 Comments
Viruses and Vendors Can Put Healthcare Data At Risk
August 09, 2011, Andrew Hicks, Director, Healthcare Practice Lead
A recent article in Healthcare Security Info highlights that computer viruses can cause security breaches, that can then in turn compromise health care data and potentially violate the HIPAA and HITECH Act regulations. Beth Israel Deaconess Medical Center in Boston had to notify more than 2,000 people that a computer virus sent data, including medical record numbers, names, etc. to an undisclosed location. Read More
Posted in: compliance, health, hipaa, hitech, it | 0 Comments