The 2023 edition of HICP includes new top five threats and many new mitigating practices that your organization should implement to keep patients safe. A breakdown of these items can be found in the HHS 405(d) 2023 HICP update blog post.
If you’re covered by HIPAA, then you’re required to have certain policies and procedures for HIPAA compliance. However, that’s easier said than done. You’re probably wondering how often HIPAA training is required. In this post, we’ll discuss HIPAA training requirements so that you can stay in full compliance with essential regulations. Read More: HIPAA Compliance […]
Why are so many healthcare organizations implementing a robust cybersecurity framework today? Perhaps it’s due to the fact that such attacks can erase patient and partner trust in your organization. Of course, the larger issue looming is that these breaches can put patient safety at risk. So in an era in which cyber attacks are […]
Building an information security program comes with several challenges. Complying with industry regulations and rules is one of them. However, when you have cybersecurity categories, they help you inform your strategy for compliance. You can minimize risk and ultimately provide better outcomes for you and your patients. So in this article, let’s talk about some […]
In the healthcare industry, HITRUST and HIPAA are often used together when speaking about regulations and compliance. Both of these concepts are incredibly important for any healthcare firm. However, they have some unique characteristics that you should know about. And truly, what is the difference between HIPAA and HITRUST? Well, hiring a HIPAA consultant is […]
ComplyAssistant’s Gerry Blass comments on the biggest threats to healthcare organizations that we should be concerned about in Healthcare IT Today’s “The Ever Evolving World of Cybersecurity Threats” article. In January 2021, HHS’s Health Industry Cybersecurity Practices (HICP) rule was signed into law. It is an extension of the HIPAA/ HITECH Security Rule and identifies […]
Kenneth Reiher, VP Operations at ComplyAssistant once said “Many organizations have a difficult time tracking their vendor relationships, let alone their implemented security controls. I recommend a strong third-party management program to complete the following: Organize all vendor relationships and associated contacts, assign an inherent risk level to each vendor based on their access to your data, […]
The New Jersey HIMSS June episode of their Customer Story podcast series features Gerry Blass, President and CEO of ComplyAssistant. Gerry joins host Mike Fortino, NJ HIMSS board member, and GalaxE.Solutions Account Executive to discuss the Health Industry Cybersecurity Practices (HICP). HICP was developed to raise awareness, provide vetted cybersecurity practices, and move organizations towards […]
The New Jersey HIMSS Digital Transformation podcast series continues with an in-depth discussion with a national leader on the topic. This episode’s guest is Angela Yochem, Chief Transformation and Digital Officer at Novant Health and Chief Operating Officer and General Manager of Novant Health Enterprises. Join your NJ HIMSS host, Jim Hennessy, CEO of e4 Services, as he […]
ComplyAssistant’s Ken Reiher attended the first annual ViVE Conference and had the following reaction and takeaway noted by Health IT Answers in their “First Annual ViVE Conference: Reactions and Takeaways” article. “Throughout my career, I have attended several healthcare conferences but, ViVE was a little different. Since the majority of attendees have not attended a […]