AHA Solutions
Resources for Hospitals
Forward this Email

HIPAA Tip
06/10/09

The HIPAA Tip is emailed the second, third and fourth Wednesday of every month.  In it you will find valuable information to ensure you are current on the latest news, trends and regulatory issues surrounding HIPAA. Subscribers total over 2,500.

If you're looking for assistance in HIPAA compliance training solutions, please contact:

Ali Pabrai, Security+, CISSP, CHP, CSCS
ecfirst.com/HIPAA Academy, Chief Executive
www.HIPAAAcademy.Net

HIPAA Academy's HIPAA Compliance Training Solutions have the exclusive endorsement
of the American Hospital Association (AHA).


To learn more about AHA-Endorsed products and services and the AHA Solutions Signature Learning Series, please call
(800) 242-4677 or visit www.aha-solutions.org

June 10, 2009

WHAT IS YOUR SECURITY FRAMEWORK?
The selection of an information security framework is one of the most important decisions that an organization will make in the area of security. The framework establishes a key component of the vision the organization has in the area of information security. The core objective for any organization in the area of security is the protection of vital assets, such as the information infrastructure, and sensitive – indeed confidential – information that the organization comes into contact with. Organizations must ensure the confidentiality, integrity and availability of all sensitive information it comes into contact with. A comprehensive security framework is vital to realize this objective.

The information security framework enables the organization to organize its security priorities, and compliance mandates, in a methodical, disciplined manner. Each organization is impacted by one or more federal and state regulations in the area of information security. Instead of trying to address each regulatory requirement separately, it is more efficient and effective, to select a security framework that is comprehensive and scalable so it can be applied to address several mandates that impact your organization. It enables the organization to unify its activities around the components of the framework.

 

So what is your information security framework?  The information security framework further provides the foundation for organizing the policies for your organization. These policies set the “dial-tone” for security in the organization. The policies in turn lay the parameters for the selection and implementation of security controls.

 

What is your security program? Contact ecfirst to discuss your compliance and information security challenges and initiatives. We can assist you with assisting you with your security program. Talk to Steve.Ferrick@ecfirst.com or call 1.877.899.9974 x14 to schedule a complimentary conference discussion with cyber security and compliance experts.

CERTIFIED SECURITY COMPLIANCE SPECIALIAST (CSCS) PROGRAM in LAS VEGAS, PHOENIX, OTHER CITIES
To attend the only certification program in the industry that addresses PCI DSS, ISO 27001/27002, HIPAA, FISMA, and other information security regulations, please visit the web-site, www.ecfirst.com, and click on the CSCS Program. The CSCS Program is presented by compliance and cyber security experts. The CSCS program is offered in several cities across the USA – check the schedule on-line at www.ecfirst.com or bring the program on-site and have it tailored for your environment.

WEBINAR: PREPARED FOR A CMS AUDIT FOR HIPAA COMPLIANCE? JUNE 17, 2009

CMS has published guidance on critical documents that would be investigated and personnel who may be interviewed as part of an HIPAA audit for compliance. Is your organization prepared for a CMS audit? Join  Ali Pabrai – an expert on cyber security and compliance – and examine critical steps organizations need to step through to meet HIPAA mandates for privacy and security.

 
MANAGED SERVICES COMPLIANCE PROGRAM (MCSP) FOR HIPAA & HITECH

For more information about our Managed Compliance Services Program (MCSP) and other security consulting solutions including development of a proposal for addressing your compliance requirements, please contact John Schelewitz at 1.480.663.3225 or at John.Schelewitz@ecfirst.com.