HIPAA HITECH Compliance News - page 3

Why HITRUST CSF needs NIST CSF

Why do you need NIST CSF even if you already have HITRUST CSF? Management and the board of directors may require NIST CSF.

Finish Reading…

Posted August 16, 2018 by Jack Anderson

Simple HIPAA Checklist

The simplest HIPAA checklist is a quarterly NIST CSF risk assessment. It reflects that you have edited and implemented NIST policies, documented staff training and updated your NIST CSF risk assessment.

Finish Reading…

Posted July 31, 2018 by Jack Anderson

NIST Policies

Trying to do an official certified NIST risk assessment from HIPAA policies written in the past is like translating hieroglyphics into English. The pathway to a Certified NIST Risk Assessment is having NIST policies in place. A NIST policy is one written to address a specific safeguard on the NIST CyberSecurity Framework (CSF).

Finish Reading…

Posted April 24, 2018 by Jack Anderson

Certified NIST Risk Assessment for HIPAA compliance

A certified NIST risk assessment is your best proof of HIPAA compliance. Jumpstart delivers a quarterly certified NIST risk assessment.

Finish Reading…

Posted April 6, 2018 by Jack Anderson

What is a NIST CSF and why should I care?

A NIST CSF is a National Institute of Standards and Technology Cyber Security Framework which can deliver an equivalent to "HIPAA Certification". By meeting the standards including periodic risk assessments you can provide proof that you are doing all that is needed to protect PHI.

Finish Reading…

Posted March 20, 2018 by Jack Anderson

HIPAA Certificate:NIST CSF Risk Assessment

A risk assessment on the NIST CyberSecurity Framework (CSF) is your "certification" of HIPAA compliance. It demonstrates the status of your security and privacy programs to others such as regulators, customers, partners, and shareholders.

Finish Reading…

Posted March 7, 2018 by Jack Anderson

NIST CSF Risk Assessment Cycle

The NIST Framework works best when linked with NIST Policies and a cycle of reviewing and updating policies to match changes in the organization. We call this the Cycle of Compliance.

Finish Reading…

Posted December 19, 2017 by Jack Anderson

Your HIPAA Policies are Out of Date

HIPAA policies need to be built on a Cyber Security Framework (CSF) to be valid. Old policies written by consultants, lawyers, in-house IT, or bought off the internet do not meet the new CSF standards.

Finish Reading…

Posted December 11, 2017 by Jack Anderson

Jumpstart the NIST Framework

The NIST Framework is the gold standard of HIPAA compliance and Jumpstart can get you up and running in 72 hours at a very low cost.

Finish Reading…

Posted November 29, 2017 by Jack Anderson

Lack of Risk Assessments Could Cost $729 Million

Audit Finds Millions Paid Inappropriately Due to Lack of a Risk Assessment. Under the HITECH Act meaningful use incentive program, conducting a security risk assessment of protected health information "created or maintained by the certified EHR technology through the implementation of appropriate technical capabilities" is a core requirement.

Finish Reading…

Posted June 14, 2017 by Jack Anderson