OREM, Utah, Dec. 14, 2016 /PRNewswire/ -- Many healthcare organizations still struggle to reach HIPAA compliance, particularly with the HIPAA Security Rule.
The 2017 SecurityMetrics Guide to HIPAA Compliance is designed to show how healthcare complies with HIPAA, where organizations struggle with HIPAA compliance, and how healthcare professionals can overcome hurdles in getting HIPAA compliant.
The guide was built from primary research of over 150 healthcare professionals responsible for HIPAA compliance at organizations with fewer than 500 employees, and it includes day-to-day implementation and best practice tips from the SecurityMetrics HIPAA Audit Team.
Research results expose a general lack of compliance to the HIPAA Security Rule by smaller organizations, which may pose a threat to larger covered entities with whom they may be partnered. Some of the findings include:
50% of respondents don't know if their organizations use multi-factor authentication
41% don't know how often their firewall rules are reviewed
26% don't use mobile encryption
27% don't encrypt emails containing patient data
51% don't test employees on HIPAA-related training
"Anyone familiar with HIPAA knows that HIPAA compliance is complex and very extensive, with 75 requirements and 254 validation points for the Security Rule alone," says Security Analyst Brand Barney. "We aim to simplify the process to help organizations get compliant more quickly and efficiently."
The guide focuses on important elements from the HIPAA Privacy, Breach Notification, and Security Rules, including:
HIPAA Compliant Firewalls
Mobile Device Security
Wireless Network Security
HIPAA Compliant Emails
Logging and Log Management
Readers of the guide will also find a 12-month plan to implement HIPAA compliance as well as HIPAA documentation and budgeting best practices.
About SecurityMetrics (www.securitymetrics.com) SecurityMetrics is a global leader in data security that enables organizations of all sizes to comply with government, healthcare, and financial mandates. Since its founding date, the company has tested over 1 million systems for data security and compliance. Among other services, SecurityMetrics offers HIPAA compliance services, penetration testing, security consulting, mobile device vulnerability scanning, payment data discovery, and incident response. Founded in October 2000, SecurityMetrics is a privately held corporation headquartered in Orem, Utah.