• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Hipaa Compliance With IT
 

Hipaa Compliance With IT

on

  • 5,075 views

Achieving HIPAA Compliance with help from IT

Achieving HIPAA Compliance with help from IT

Statistics

Views

Total Views
5,075
Views on SlideShare
4,779
Embed Views
296

Actions

Likes
4
Downloads
0
Comments
1

12 Embeds 296

http://www.nainil.com 225
http://nainil.com 38
http://www.slideshare.net 15
http://www.linkedin.com 6
http://www.techgig.com 3
https://www.linkedin.com 2
http://115.112.206.131 2
http://health.medicbd.com 1
http://online.twu.edu 1
http://static.slidesharecdn.com 1
http://intranet 1
file:// 1
More...

Accessibility

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel

11 of 1 previous next

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
  • Hi Nainil,

    It was encouraging to know your creative ideas about how to achieve HIPAA Compliance. i am working as a Compliance officer. We would like to have any further views also in case you could share the PPT it would be great.

    Regards,
    Swapnil Choudhari
    91-9922939950 [India]
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • Introduction to HIPAA and Nainil

Hipaa Compliance With IT Hipaa Compliance With IT Presentation Transcript

  • Achieving HIPAA Compliance with help from IT Nainil Chheda www.nainil.com
  • This is like:
    • Mastering the art of eating a yogurt with a Fork
  • Do we know what HIPAA is?
    • Hippo is the third largest land animal
    • It is:
      • Huge
      • Has a large jaw
      • Has an Invisible Boundary which is not to be crossed
  • Quick Facts
    • How many words and lines are in the Health Insurance Portability and Accountability Act?
    • About 73,840 words, 5704 lines
  • IT Facilitates
    • Moving with the elements (together)
    • Not as a Dictator
  • Awareness
    • Software and hardware, in and of themselves, cannot be "HIPAA compliant"
    • It (Software / Hardware) can only aid a practice become HIPAA compliant
    eCW along with other added components can help a practice achieve HIPAA compliance
  • Is Technology a Challenge?
    • No
    • Then what are the most common challenges in being HIPAA Compliant?
    • 1) People
    • 2) Processes
    • 3) Policies
  • Checklist
    • Education
    • Business Policies
    • Technology (standards compliance)‏
    • Documentation
    • Periodic Audit
  • Training & Policy
    • Training
    • Mandated by Law
    • Employee training
    • Twice a year
    • TRUP
    • (Technological Resource Utilization Policy)
    • Signed by employees
    • Signed by business associates
  • Controls
    • sFTP for Database Transfer
    • Domain controller
    • Remote Desktop (Secure VNC etc)
    • HIPAA disclaimer (in email signature)
    • Secure Individual Fax Inbox
    • Secure Email (like Network Solutions – MessageGuard)
  • Documentation
    • Escalation Path
    • Server Access Logs
    • Maintenance Logs
    • Proactive Email/RSS Notification
  • Certified Data Destruction
    • Secure bins
    • On-site destruction
    • DOD 7 layer format
  • Do not get scared after this slide
  • CMS Investigation Interview
    • Personnel Interviewed
      • President
      • HIPAA Compliance Officer
      • Network Engineer
      • HR
      • Director of Training
    • Source : http://www.cms.hhs.gov/Enforcement/Downloads/InformationRequestforComplianceReviews.pdf
    • Document Request
      • Policy documents on prevention, detection and correction of security violations
      • Physical security
      • User Access
      • User Termination
      • Access to EPHI
      • Password management
  • Other Documents
    • Network penetration testing policy and procedure
    • Entity-wide security plan
    • Risk analysis
    • Organizational chart
    • Data backup procedure
    • Disaster recovery plan
    • Virus protection plan
    • Training Courses
  • Thank You Nainil Chheda [email_address] http://www.nainil.com