• Save
Hipaa Compliance With IT
Upcoming SlideShare
Loading in...5

Hipaa Compliance With IT



Achieving HIPAA Compliance with help from IT

Achieving HIPAA Compliance with help from IT



Total Views
Views on SlideShare
Embed Views



12 Embeds 296

http://www.nainil.com 225
http://nainil.com 38
http://www.slideshare.net 15
http://www.linkedin.com 6
http://www.techgig.com 3
https://www.linkedin.com 2 2
http://health.medicbd.com 1
http://online.twu.edu 1
http://static.slidesharecdn.com 1
http://intranet 1
file:// 1


Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
  • Hi Nainil,

    It was encouraging to know your creative ideas about how to achieve HIPAA Compliance. i am working as a Compliance officer. We would like to have any further views also in case you could share the PPT it would be great.

    Swapnil Choudhari
    91-9922939950 [India]
    Are you sure you want to
    Your message goes here
Post Comment
Edit your comment
  • Introduction to HIPAA and Nainil

Hipaa Compliance With IT Hipaa Compliance With IT Presentation Transcript

  • Achieving HIPAA Compliance with help from IT Nainil Chheda www.nainil.com
  • This is like:
    • Mastering the art of eating a yogurt with a Fork
  • Do we know what HIPAA is?
    • Hippo is the third largest land animal
    • It is:
      • Huge
      • Has a large jaw
      • Has an Invisible Boundary which is not to be crossed
  • Quick Facts
    • How many words and lines are in the Health Insurance Portability and Accountability Act?
    • About 73,840 words, 5704 lines
  • IT Facilitates
    • Moving with the elements (together)
    • Not as a Dictator
  • Awareness
    • Software and hardware, in and of themselves, cannot be "HIPAA compliant"
    • It (Software / Hardware) can only aid a practice become HIPAA compliant
    eCW along with other added components can help a practice achieve HIPAA compliance
  • Is Technology a Challenge?
    • No
    • Then what are the most common challenges in being HIPAA Compliant?
    • 1) People
    • 2) Processes
    • 3) Policies
  • Checklist
    • Education
    • Business Policies
    • Technology (standards compliance)‏
    • Documentation
    • Periodic Audit
  • Training & Policy
    • Training
    • Mandated by Law
    • Employee training
    • Twice a year
    • TRUP
    • (Technological Resource Utilization Policy)
    • Signed by employees
    • Signed by business associates
  • Controls
    • sFTP for Database Transfer
    • Domain controller
    • Remote Desktop (Secure VNC etc)
    • HIPAA disclaimer (in email signature)
    • Secure Individual Fax Inbox
    • Secure Email (like Network Solutions – MessageGuard)
  • Documentation
    • Escalation Path
    • Server Access Logs
    • Maintenance Logs
    • Proactive Email/RSS Notification
  • Certified Data Destruction
    • Secure bins
    • On-site destruction
    • DOD 7 layer format
  • Do not get scared after this slide
  • CMS Investigation Interview
    • Personnel Interviewed
      • President
      • HIPAA Compliance Officer
      • Network Engineer
      • HR
      • Director of Training
    • Source : http://www.cms.hhs.gov/Enforcement/Downloads/InformationRequestforComplianceReviews.pdf
    • Document Request
      • Policy documents on prevention, detection and correction of security violations
      • Physical security
      • User Access
      • User Termination
      • Access to EPHI
      • Password management
  • Other Documents
    • Network penetration testing policy and procedure
    • Entity-wide security plan
    • Risk analysis
    • Organizational chart
    • Data backup procedure
    • Disaster recovery plan
    • Virus protection plan
    • Training Courses
  • Thank You Nainil Chheda [email_address] http://www.nainil.com