Do You Know Who Your Employees? Insider threat is becoming one of the largest threats to organizations and some cyberattacks may be insider-driven. Although all insider threats are not malicious or intentional, the effect of these threats can be damaging to a Covered Entity (CE) and Business Associate (BA) and have a negative impact on […]
HIPAA Security Awareness Training for Business Associates It is imperative for Covered Entities (CEs) and Business Associates (BAs) alike provide their workforce that handle electronic protected health information (PHI) with frequent HIPAA Security Awareness Training, as defined in 45 CFR § 164.308(a)(5), regardless of the organization’s size. The amount and type of training will be […]
Your Employee Just Quit! The first thing you should do is follow your Termination Procedures to ensure you perform the necessary Workforce Security procedures, as defined in §164.308 (a)(3)(ii)(C). When a workforce member leaves, it is extremely important Covered Entities (CEs) and Business Associates (BAs) of all sizes prevent unauthorized access to PHI by ensuring […]
Did you know? All Business Associates (BAs) are required to perform a risk analysis to identify their potential administrative, physical and technical security risks to PHI. Required and Addressable Implementation Specifications Covered Entities (CEs) and BAs are required to comply with every Security Rule “Standard.” However, the Security Rule categorizes certain implementation specifications within those […]