The Coalfire Blog
Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique IT GRC issues that impact the industries we serve, including Retail, Financial Services, Healthcare, Higher Education, Software, Government and Utilities.
The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.
Is your HIPAA Security and HITECH audit program in order?
February 20, 2012, Andrew Hicks, Director, Healthcare Practice Lead
Healthcare organizations have been working towards HIPAA and HITECH compliance for a few years now. “Surprise” HIPAA compliance audits conducted by the OCR have begun and at Coalfire we’ve come across some gaps that have led organizations to fall short of their compliance initiatives. Read More
Posted in: Health, Healthcare, HIPAA, HITECH, IT | 0 Comments
Viruses and Vendors Can Put Healthcare Data At Risk
August 09, 2011, Andrew Hicks, Director, Healthcare Practice Lead
A recent article in Healthcare Security Info highlights that computer viruses can cause security breaches, that can then in turn compromise health care data and potentially violate the HIPAA and HITECH Act regulations. Beth Israel Deaconess Medical Center in Boston had to notify more than 2,000 people that a computer virus sent data, including medical record numbers, names, etc. to an undisclosed location. Read More
Posted in: compliance, health, hipaa, hitech, it | 0 Comments
They Changed What? HIPAA & HITECH
May 24, 2011, Andrew Hicks, Director, Healthcare Practice Lead
In 1996, the Healthcare Insurance Portability and Accountability Act (HIPAA) opened the door to increased exchanges of healthcare information in an effort to improve care and reduce costs. The Act included new provisions for protected health information (PHI). Since there are only a few limited reviews and enforcement efforts, the effectiveness of the implementations have remained open. Read More
Posted in: compliance, health, Healthcare, hipaa, hitech, it | 0 Comments