MACRA 2017 deadlines are coming. Do you have a Security Risk Assessment scheduled before December 31st?

Right now the healthcare industry is in the final race to complete the requirements for MACRA, the new reimbursement scheme for Medicare. Thousands of dollars are at risk – failing to satisfy the MACRA requirements in 2017 will result in payment reductions for all of 2019!Submerged within the 2,398 pages of MACRA lies a key requirement for eligibility - completing a security risk assessment (SRA). The SRA is a “core requirement.”  Without an SRA, a healthcare practice can undo all their other eff ...

Check out our own Robert Felps, CEO Third Rock, speaking at two events in November

Robert is taking his  acclaimed “Cure for the HIPAA Headache” presentation on the road this month and presenting at the Developmental Services Network Annual Meeting  on November 6th in La Quinta, California.He then heads to Dallas on November 16th for the IQSC First Annual Healthcare Data Seminar.Contact us at info@thirdrock.com if you would like a copy of the presentation or would be interested in us presenting at one of your events.  Bio - Robert Felps, CEO/CISO - is a trusted advi ...

Innotech Austin 2017 – Discount Code

Come hear our very own Julie Rennecker at Innotech Austin 2017 on November 16.  She's presenting Healthcare - An Identity Thief's SuperStore for the ISSA Cybersecurity Track.Healthcare records include some of the most complete - and thus, most valuable - personal identities available online. Yet, they are also among the most vulnerable, making them a primary target for cybercriminals. Julie will talk about some of the cybersecurity challenges in healthcare and how the cybersecurity community can h ...

Too Many Passwords and Too Little “Personal” Memory!

I began my morning by starting up my PC and getting the message “Your password has expired. You must change it now!” Temporarily frozen at my keyboard, my mind is churning to think up a new password that I have a decent chance of remembering.  Should I tweak the old password by a digit or create a new one?  Luckily NIST has phased out the requirement to regularly change passwords.  But every website seems to require a password.  I have about 200 passwords to manage, what a pain!  I can’t begin to ...

HIPAA Compliance is a Business Decision

A couple of weeks ago, I was talking with a technology vendor who is starting to move into the healthcare space. Their technology isn’t used in the creation or manipulation of patients’ protected health information (PHI), but they do store information on behalf of healthcare organizations that could potentially include PHI. They wanted to know, “Are we required to comply with HIPAA?” Technically – yes. On the other hand, there are hundreds of healthcare organizations and healthcare vendors who act ...

The Most Common Mistakes in Cybersecurity are Preventable

Many of the issues we see in cybersecurity, whether you are in healthcare, retail, finance, etc., are by and large preventable. It is not about having a big budget or a large team of experts. No, some of it is just common sense. It is not unlike driving a car. When driving a car you take several basic, yet important, steps to try and lower your risk of an accident. You look both ways at a stop sign, you drive safely to avoid losing control, you keep your car in working condition, and just in case you are in ...

Don’t Click the Download Button!

I thought about naming this blog "Would the Real Download Link Expose Yourself."  But, a few people said that wasn't a great title.  Go figure!I'm sure you've visited a website to download something, maybe an image or install software or maybe some template to design a cool new flyer.  You've probably also clicked on a large green or teal or blue or some other lovely color button that said, "Download", only to find out it was an ad to some trash item you're not interested in nor do you want.  It ...

National Health IT Week – FREE Assessment

It's National Health IT Week and Third Rock is promoting the value of Health IT and its role in protecting your patients, your practice and yourself with a FREE assessment. Just click below to take your free risk assessment to better understand your practice's security risk from cyber threats. It only takes a few minutes! Let's Get StartedJoin the movement to improve Health IT to improve patients' health.  Checkout our HIPAA and Cybersecurity Resources page at https://thirdrock.com/resources/ ...

It is Time for Us to Take Control of Our Data!

The EquiFax breach really has me angry.  Mostly because I have no control over any aspect of this mess.  EquiFax scoops up data on all of us without our consent.  They seem unaccountable and untouchable.   With a last name like mine, I’ve had many opportunities to dispute incorrect data on my credit reports, which is always time consuming and irritating.  They make it known how unimportant you are and assume you are “guilty” unless you prove otherwise.  They collect data on all the people in th ...

Could this breach have been prevented? – A new series

Could this breach have been prevented? – A new seriesOne of the first lessons of process improvement is that preventing errors is much less expensive and time-consuming than remedying the damage after the fact. The same is true for an information breach. The time and cost for installing new software, training staff members, and reinforcing policies and procedures pales in comparison to cleaning up the damage of an information privacy or security breach.Recent headlines of multi-million-dollar ...

1 2 3 4 5 6 19