Petronella Computer Consultants - Computer network support Raleigh durham chapel hill RTP NC security WAN LAN Microsoft Novell Cisco Citrix Watchguard

Untitled Document


			HOME SOLUTIONS Business Solutions Apple Support Computer Network Engineering 100% Network Uptime Guarantee Hardware Sales, Service & Support Software Sales, Service & Support IT Outsourcing Services Remote Support Network Monitoring Preventative Maintenance Program Cabling & Installation Digital VoIP Phone Wired & Wireless LAN/WAN E-Document Shredding Security & Integration Spyware & Virus Protection Anti-Spam Based Solutions Linux / Opensource Solutions HIPAA Compliance Quickbooks Proadvisor Services Backup Solutions Data Backup Solutions Disaster Recovery Web Solutions Web Hosting Web Design & Marketing Pricing FLAT RATE SERVICES All Products Small Business Plan PC Management Server Management Network Management ABOUT PCC About Us The Firm The Owner The Staff Why PCC? Download Brochure News News & Events Whitepapers Newsletter Free Tips CLIENTS Financial & Insurance Service Apex-Cary Insurance Powell, Loos & Langford Legal Services Underwood & Roberts Crouse Law Offices Healthcare & Medical Services Roxboro Family Medicine NC Physicians Health Program Real Estate Searstone Omega Association Preston Whichard Real Estate Professional Services Lappas + Havener, PA VAST Design COMPANY Partners Testimonials Referral Satisfaction Guarantee Download Brochure Contact PCC Directions Legal Terms & Conditions Privacy Policy Copyright Notice

Home > Services > Business Services > HIPAA Security > Top 10 HIPAA Security Tips

Top 10 HIPAA Security Tips
1. Perform a risk analysis. A security risk analysis is the basis by which CEs should establish their priorities and determine which security implementation specifications they should address and in what order.

2. Use unique identification. Based on a history of compromising security for convenience, many CEs have used generic user IDs or the user IDs have been shared. By providing secure, yet convenient access to information through single sign-on technology, CEs can ensure appropriate tracking of information access to a particular user.

3. Implement access controls. Granular levels of access controls help ensure that users are able to access only information deemed minimum necessary to their requirements.

4. Implement role-based access control. Wherever possible, the automation of role-based user provisioning will help improve the minimum-necessary process and could reduce current expenses for security management, if automated.

5. Monitor all security incidents. Consolidating and correlating log information across the enterprise will assist in monitoring, reporting and, ultimately, preventing security incidents.

6. Provide secure, convenient access to ePHI. Improving security and convenience of access to ePHI allows CEs to deliver value to their users and improve the likelihood that users will follow security policies and procedures.

7. Monitor network utilization. Mitigate risks by monitoring utilization of the network to help ensure that corporate resources are used only for legitimate purposes.

8. Minimize vulnerabilities across the network. Identify securityvulnerabilities that may compromise the security and confidentiality of ePHI.

9. Monitor enterprise-wide data protection policies and procedures. Based on the disparate nature of data backup and recovery policies and procedures for many CEs, implementing a storage management portal will help ensure the availability of an exact, retrievable copy of ePHI as required under the security rule.

10. Improve utilization of storage resources. As the volume of data continues to increase along with HIPAA requirements to ensure that lost data can be recovered, deploying storage resource management technology will help save money for CEs by improving utilization of current resources before incurring new hardware expenses.

While every CE's situation and compliance challenges are unique, paying attention to these areas should help CEs form the basis for a strong HIPAA compliance strategy. By following these steps, CEs can facilitate their compliance efforts while improving user productivity and satisfaction, as well as reduce existing security management expenses.

Once CEs meet their compliance needs, they can also use these best practices to improve their overall resource management, so they maximize the return on their technology investments.

Petronella Computer Consultants, Inc. can assist you by performing a free HIPAA security risk assessment. This audit will alert you to weaknesses and risks in your HIPAA compliance strategy. Customized compliance strategies involving cost-efficient technology will assist you in maximizing your HIPAA compliance efforts.

Top 10 HIPAA Security Tips

FREE HIPAA Security Risk Assesment

Are You a Covered Entity?

The HIPAA Law in Detail

HRSA Tools

12th Annual HIPAA Summit

Untitled Document

Pricing / Satisfaction Guarantee / Privacy Policy / Site Map
© Copyright Notice / Testimonials / Terms & Conditions / Contact

Petronella Computer Consultants / Raleigh, NC / Toll Free 1.877.468.2721