PRESS RELEASE

CHICAGO, IL - August 13, 2004 - To assist Illinois health care providers with the security requirements of the Health Insurance Portability and Accountability Act (HIPAA), Association Management Resources (AMR), an affiliate corporation of the Illinois Hospital Association (IHA) has selected HIPAA Academy (www.HIPAAAcademy.Net) as its strategic partner for delivering HIPAA security compliance services. AMR selected HIPAA Academy as a provider for HIPAA security compliance services, which include HIPAA Risk Analysis, Vulnerability Assessment, Security Policies, Remediation, Advisor services, e-learning, HIPAA Training & Certification and HIPAA evaluation & audits.

"The AMR believes the HIPAA Academy’s 'Seven Steps to HIPAA Security Compliance™' methodology exceeds the requirements of the HIPAA Security Rule and more than adequately safeguards Protected Health Information on behalf of patients,” stated Brian Foster, President of AMR. “The HIPAA Academy’s methodology is an excellent framework to consider as member hospitals launch HIPAA security initiatives and activities. AMR is working closely with the HIPAA Academy to help members address HIPAA Security Rule requirements such as risk analysis, security policies and training.”

“The IHA is a respected organization that is always striving to bring value to its hospital members,” said Allen Nguyen, President of the HIPAA Academy. “The HIPAA Academy’s hands-on consulting experience will enable hospitals to accelerate their security compliance activities. We are developing tailored solutions for hospitals that include knowledge transfer to enable compliance activities that are repeatable.”

Among the HIPAA compliance services available to hospitals are:

• Instructor Led Training: Certified HIPAA Professional (CHP) and Certified HIPAA Security Specialist TM (CHSS) training helps you understand the core elements for defining the framework towards HIPAA security compliance.
  
  
• HIPAA Security Risk Analysis: Outlines potential threats to hospital and identify key gaps comparing the current security environment to what’s required for compliance with the regulation along with the HIPAA Academy’s recommendations for remediation activities.
  
  
• Vulnerability Assessment: The HIPAA Academy uses a number of tools in assessing the vulnerability of an organization’s systems, networks and applications.
  
  
• Security Policies Template: HIPAA Academy has developed Information Security Strategy and a suite of 58 Security policies to help covered entities meet the challenges of creating HIPAA compliant security policies.
  
  
• Remediation: Implementation services for HIPAA security remediation including vulnerability management, application security, network security, physical security, access controls, authentication solutions, encryption, contingency planning and other HIPAA required and addressable areas.
  
  
• Technical Access Controls: Advisory services on remote access, wireless, single sign and access control solutions.
  
  
• HIPAA Security Advisor: Get immediate access to experienced HIPAA security professionals, without a long term commitment.
  
  
• HIPAA e-learning: provides Job Role based training to all employees in HIPAA Security rule and refresh privacy rule.
  
  
• HIPAA Audits: To verify compliance with the Audit Controls requirement in the legislation as well as assisting organizations with the Evaluation standard under Administrative Safeguards.
  
  
• HIPAA Academy Certified Product Solution: A rigorous review is conducted of software products to determine if they meet the requirements of the HIPAA Security Rule.

About IHA
IHA, with offices in Naperville, Springfield, and Carbondale, is an advocate for more than 200 Illinois hospitals and health systems and the patients and communities they serve. Additional information about IHA is available at www.ihatoday.org.

About AMR
Association Management Resources (AMR) has over twenty years experience in providing cost-effective, high quality service programs to Health Care Institutions, including benefit and insurance services, and other business solutions. Association Management Resources is an affiliate corporation of the Illinois Hospital Association.

About HIPAA Academy
The HIPAA Academy (www.HIPAAacademy.Net) is the gold standard in the industry for HIPAA consulting, training and certification. HIPAA Academy delivers solutions in the areas of HIPAA Professional Services, HIPAA Advisory Services, HIPAA Risk Analysis, Gap Analysis, Security Policy development, HIPAA Audit and Evaluation and HIPAA Training and Certification. HIPAA Academy clients include Hospitals, several State governments, including the State of Oregon, Iowa and Illinois, as well as many county governments.

HIPAA Academy’s Certified HIPAA Security Specialist (CHSS) program is a fast-growing certification program whose attendees include CISSPs, RSA Security and many hospitals and government agencies. The HIPAA Academy’s Getting Started with HIPAA and The Seven Steps to HIPAA Security Compliance are the best-selling texts at several sites, including Amazon.com and BN.com. The HIPAA Academy has developed a customized set of security policy templates to meet the requirements of the legislation. These are exclusively available at www.HIPAAAcademy.Net.