Overcoming Organizational Roadblocks to Cyber Security 

In many organizations, cyber security is perceived as one of those “important-but-not-urgent” issues that keep getting put off in deference to the pressing issues of the day – insurance denials, staffing, readmissions, patient no-shows, supply shortages…the list goes on.  It’s not that organizational leaders are doing nothing. In most organizations, the basic pieces, such as a HIPAA-compliant EHR, firewall, anti-virus software, and staff training, are all in place. It is these very safeguards ...

Cybersecurity and The Endless List of Compliance

I recently wrote about insurance companies raising the bar on business to protect their valuable data to acquire cyber liability insurance.  But, it's not just insurance companies that are raising the bar. Governments around the globe are now requiring all types of companies to be compliant with some type of standard to better protect the data they possess.  What many people don't realize is these standards are all based on the protection of personal/private/confidential/sensitive/valuable informatio ...

Internet of Medical Things:  Real Security Threat or Hype?

For decades, healthcare medical devices functioned as freestanding tools. Glucometers, lasers, infusion pumps, pressure monitors, neonatal incubators, heart monitors – each serving its unique function independently of the others. With the widespread implementation of electronic health records (EHRs), however, and the push for increased digitization of health information, these devices have increasingly been networked into the patient information ecosystem.  They now transmit PHI between a myriad of syste ...

With the New Year, New Regulations!

With each New Year, we always look back and review the significant events of the previous year.  By all accounts, 2017 was a wild and woolly year!  World and national politics, the stock market, terrorism and acts of mass violence, devastating hurricanes, and forest fires! The digital world saw big changes as well with the repeal of net-neutrality and some major cyber breaches.   The Equifax breach effectively impacted half the population of the United States. Uber affected another 57 million people ...

Protect Your Clients, Your Clients’ Data, and Your Business – a webinar offered by Developmental Services Network

Robert Felps, CEO of Third Rock, is proud to present a cybersecurity webinar - Protect Your Clients, Your Clients' Data, and Your Business - for Developmental Services Network on Thursday, January 18, 2018, 10:30am-11:30am PST. Did you know your client data is worth 50 times more than a credit card number on the dark web? A HIPAA approved client management system does not make you HIPAA compliant, nor does it completely protect your client data. Learn steps to improve your cybersecurity and ach ...

Third Rock Streamlines SECURETexas Privacy and Security Certification

Round Rock, TX – December 19, 2017 – Third Rock, who was awarded preferred vendor status with Texas Health Services Authority (THSA) in August this year, has streamlined the SECURETexas certification process to help healthcare organizations reduce liability by better securing patients’ Protected Health Information (PHI). Third Rock has incorporated the question set for the SECURETexas certification program into CompassDB, Third Rock's compliance management system.  Third Rock has shown that by ut ...

MACRA Deadline Approaching – Schedule your SRA today!

MACRA Deadline Approaching - Schedule your SRA today! In an effort to help medical practices maximize their Medicare reimbursements by meeting MACRA requirements, Third Rock is offering a 20% discount for our Security Risk Assessment package if you schedule your SRA with Third Rock by December 8th. Our tool, CompassDB, makes doing an SRA fast and easy. Our package offer includes: ✓ Security Risk Assessment and detailed report ✓ A Security Risk Management consultant available onsite or online ...

Upcoming Events of Interest

The Health Care Compliance Association Regional Conference will be held in Houston on Dec. 8, 2017. Third Rock's COO, Ed Jones, PMP, CHSP, will be participating on a panel discussing the importance of Patient Information Privacy along with representatives from THSA and Winstead, PC. Members of our Third Rock Team will also be in Dallas on Dec.14 & 15 for the Cybersecurity Forum at the Dallas Health IT Summit. The Cybersecurity Forum brings together experts in healthcare IT security and p ...

MACRA 2017 deadlines are coming. Do you have a Security Risk Assessment scheduled before December 31st?

Right now the healthcare industry is in the final race to complete the requirements for MACRA, the new reimbursement scheme for Medicare. Thousands of dollars are at risk – failing to satisfy the MACRA requirements in 2017 will result in payment reductions for all of 2019! Submerged within the 2,398 pages of MACRA lies a key requirement for eligibility - completing a security risk assessment (SRA). The SRA is a “core requirement.”  Without an SRA, a healthcare practice can undo all their other eff ...

HIPAA Compliance is a Business Decision

A couple of weeks ago, I was talking with a technology vendor who is starting to move into the healthcare space. Their technology isn’t used in the creation or manipulation of patients’ protected health information (PHI), but they do store information on behalf of healthcare organizations that could potentially include PHI. They wanted to know, “Are we required to comply with HIPAA?” Technically – yes. On the other hand, there are hundreds of healthcare organizations and healthcare vendors who act ...

1 2 3 4 5 6 15