The guide was built from primary research of over 150 healthcare professionals responsible for HIPAA compliance at organizations with fewer than 500 employees, and it includes day-to-day implementation and best practice tips from the SecurityMetrics HIPAA Audit Team.
Research results expose a general lack of compliance to the HIPAA Security Rule by smaller organizations, which may pose a threat to larger covered entities with whom they may be partnered. Some of the findings include:
- 50% of respondents don't know if their organizations use multi-factor authentication
- 41% don't know how often their firewall rules are reviewed
- 26% don't use mobile encryption
- 27% don't encrypt emails containing patient data
- 51% don't test employees on HIPAA-related training
"Anyone familiar with HIPAA knows that HIPAA compliance is complex and very extensive, with 75 requirements and 254 validation points for the Security Rule alone," says Security Analyst Brand Barney. "We aim to simplify the process to help organizations get compliant more quickly and efficiently."
The guide focuses on important elements from the HIPAA Privacy, Breach Notification, and Security Rules, including:
- HIPAA Compliant Firewalls
- PHI Encryption
- Mobile Device Security
- Wireless Network Security
- HIPAA Compliant Emails
- Logging and Log Management
- Remote Access
- Vulnerability Scanning
- Penetration Testing
Readers of the guide will also find a 12-month plan to implement HIPAA compliance as well as HIPAA documentation and budgeting best practices.
Download the 2017 SecurityMetrics Guide to HIPAA Compliance
To learn more about SecurityMetrics or HIPAA, contact 801.705.5665, email firstname.lastname@example.org, or visit www.securitymetrics.com/hipaa.
For press inquiries contact 801-995-6516, or email email@example.com.
About SecurityMetrics (www.securitymetrics.com)
SecurityMetrics is a global leader in data security that enables organizations of all sizes to comply with government, healthcare, and financial mandates. Since its founding date, the company has tested over 1 million systems for data security and compliance. Among other services, SecurityMetrics offers HIPAA compliance services, penetration testing, security consulting, mobile device vulnerability scanning, payment data discovery, and incident response. Founded in October 2000, SecurityMetrics is a privately held corporation headquartered in Orem, Utah.
To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/securitymetrics-releases-2017-guide-to-hipaa-compliance-300377770.html