The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.


  • Anthem Data Breach - A Message from Coalfire's Healthcare Practice Director

    February 05, 2015, Andrew Hicks, Managing Principal, Coalfire

    Several weeks ago I had the opportunity to speak on a panel at a healthcare conference. In attendance were CIOs, CISOs, VPs of IT, and members of legal counsel. The individuals attending the session represented organizations ranging from small- to medium-sized business associates all the way up to large, multi-networked hospitals defined as covered entities under the Health Insurance Portability and Accountability Act (HIPAA).

    Read more
  • Their Claim to Fame – So-Called HIPAA-Compliance Experts and Tools

    January 15, 2015, Andrew Hicks, Managing Principal, Coalfire

    Have you noticed how many vendors and software solutions are out there claiming they can make you HIPAA-compliant?  Well, at the end of the day that’s simply not possible because only you can make your organization HIPAA-compliant.  I came up with a list of “red flags” that I typically see from vendors, contractors and the like.

    Read more
  • What you need to know from the OCR’s Report to Congress on Breaches and HIPAA Rules Compliance

    June 26, 2014, Rick Link, Managing Director

    Last week the HHS Office for Civil Rights (OCR) issued their Annual Report to Congress on Breaches of Unsecured Protected Health Information (PHI) for calendar years 2011 and 2012. This is their second annual report required by the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009.

    Read more
  • HIMSS Privacy & Security Forum – West 2014 Wrap-Up

    June 23, 2014, Andrew Hicks, Managing Principal, Coalfire

    The first HIMSS Privacy & Security Forum in the western U.S. proved to be a success and was attended by over 300 people including attendees (CEs and BAs), speakers, exhibitors, and partners.  We reconnected with several clients and met new friends at our booth, which was located right in the middle of the action.  We also co-hosted a dinner with our partner, Voltage Security, and enjoyed catching up with old acquaintances and meeting new ones.

    Read more
  • A Proven Strategy for Implementing Vendor Management Programs

    December 10, 2013, Andrew Hicks, Managing Principal, Coalfire

    Every regulated industry includes a requirement for managing third-party risk.  Some industries are further along the path and have more mature processes than others.  However, there are tried and true methodologies and standards established by those early movers that we can utilize across other regulated industries.

    Read more
  • Displaying results 6-10 (of 18)
     |<  <  1 - 2 - 3 - 4  >  >| 

Recent Posts

Post Topics

Archives

RSS Feed

The Coalfire BlogSubscribe to Feed
Chrome users will need to install RSS Subscription Extension (by Google)

Tags