Presentation is loading. Please wait.

Presentation is loading. Please wait.

Final HIPAA Security Rule

Published byLouise St-Cyr Modified over 6 years ago

Similar presentations

Presentation on theme: "Final HIPAA Security Rule"— Presentation transcript:

1 Final HIPAA Security Rule
William R. Braithwaite, MD, PhD 18 February 2003

2 HIPAA Security Rule Standards
9 Administrative Safeguard Standards 12 Required Implementation Specifications 11 Addressable Implementation Specifications 4 Physical Safeguard Standards 4 Required Implementation Specifications 6 Addressable Implementation Specifications 5 Technical Safeguard Standards 5 Addressable Implementation Specifications

3 9 Administrative Safeguard Standards
Security Management Process Assigned Security Responsibility Workforce Security Information Access Management Security Awareness and Training Security Incident Procedures Contingency Plan Evaluation Business Associate Contracts and Other Arrangements

4 12 Required Administrative Specifications
Risk Analysis Risk Management Sanction Policy Information System Activity Review Assigned Security Responsibility Isolating Health care Clearinghouse Function Security Incident Response and Reporting Data Backup Plan Disaster Recovery Plan Emergency Mode Operation Plan Period Evaluation of Security Policies and Procedures Written Business Associate Contract or Other Arrangements

5 11 Addressable Administrative Imp Specs
Workforce Authorization and/or Supervision Workforce Clearance Procedure Workforce Termination Procedures Access Authorization Management Access Establishment and Modification Security Reminders   Protection from Malicious Software Log-in Monitoring Password Management Contingency Plan Testing and Revision Procedure Applications and Data Criticality Analysis

6 4 Physical Safeguard Standards
Facility Access Controls Workstation Use Workstation Security Device and Media Controls

7 4 Required Physical Imp Specs
Workstation Use Workstation Security Media Disposal Media Re-use

8 6 Addressable Physical Imp Specs
Facility Contingency Operations Facility Security Plan Facility Access Control and Validation Procedures Facility Maintenance Records Media Accountability Data Backup and Storage

9 5 Technical Safeguard Standards
Access Control Audit Controls Integrity Person or Entity Authentication Transmission Security

10 4 Required Technical Imp Specs
Unique User Identification Emergency Access Procedure Audit Controls Person or Entity Authentication

11 5 Addressable Technical Imp Specs
Automatic Access Logoff Access Encryption and Decryption Mechanism to Authenticate Electronic Protected Health Information Transmission Integrity Controls Transmission Encryption

Download ppt "Final HIPAA Security Rule"

Similar presentations

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
David Assee BBA, MCSE Florida International University

David Assee BBA, MCSE Florida International University
Security Vulnerabilities and Conflicts of Interest in the Provider-Clearinghouse*-Payer Model Andy Podgurski and Bret Kiraly EECS Department & Sharona.

Security Vulnerabilities and Conflicts of Interest in the Provider-Clearinghouse*-Payer Model Andy Podgurski and Bret Kiraly EECS Department & Sharona.
Chapter 10. Understand the importance of establishing a health care organization-wide security program. Identify significant threats—internal, external,

Chapter 10. Understand the importance of establishing a health care organization-wide security program. Identify significant threats—internal, external,
1 HIPAA Security Final Rule Overview April 9, 2003Karen Trudel.

1 HIPAA Security Final Rule Overview April 9, 2003Karen Trudel.
HIPAA Security NWOAHU Presented by Barb Gerken 11/12/2013.

HIPAA Security NWOAHU Presented by Barb Gerken 11/12/2013.
HIPAA, Computer Security, and Domino/Notes Chuck Connell, www.chc-3.comwww.chc-3.com.

HIPAA, Computer Security, and Domino/Notes Chuck Connell,
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
HIPAA and the GLB Connections Between Congress and Information Assurance.

HIPAA and the GLB Connections Between Congress and Information Assurance.
Where to start Ben Burton, JD, MBA, RHIA, CHP, CHC.

Where to start Ben Burton, JD, MBA, RHIA, CHP, CHC.
HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.

HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.

Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.
Privacy, Security and Compliance Concerns for Management and Boards November 15, 2013 Carolyn Heyman-Layne, Esq. 1.

Privacy, Security and Compliance Concerns for Management and Boards November 15, 2013 Carolyn Heyman-Layne, Esq. 1.
1 HIPAA Privacy & Security Overview Know HIPAA Presents.

1 HIPAA Privacy & Security Overview Know HIPAA Presents.
Probabilistic Risk Analysis Farrokh Alemi, Ph.D. April 12, 2004.

Probabilistic Risk Analysis Farrokh Alemi, Ph.D. April 12, 2004.
© Copyright 2014 Saul Ewing LLP The Coalition for Academic Scientific Computation HIPAA Legal Framework and Breach Analysis Presented by: Bruce D. Armon,

© Copyright 2014 Saul Ewing LLP The Coalition for Academic Scientific Computation HIPAA Legal Framework and Breach Analysis Presented by: Bruce D. Armon,
HIPAA 203: Security An Introduction to the Draft HIPAA Security Regulations.

HIPAA 203: Security An Introduction to the Draft HIPAA Security Regulations.
Information Security Policies and Standards

Information Security Policies and Standards
Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.

Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.

Similar presentations

Ads by Google