Third Rock – Our CEO was Security Panelist at Health Tech ATX

Robert Felps, Third Rock CEO, was one of three panelist for the Health Tech ATX conference in Austin, TX on October 7.  There were over 75 Healthcare executives and security experts in attendance.  One of the main focuses was on the extreme rise in Healthcare cyber-security breaches and how to address them.  HIPAA compliance was the number one response from the panelist.  You must do a Risk Assessment to know what issues you have and prioritize the remediation of those issues.  The changes brought abo ...

Third Rock Recognized as one of Most Promising HIPAA Compliance Solution Providers for 2015!

Third Rock Recognized as one of Most Promising HIPAA Compliance Solution Providers for 2015! Click to Read ArticleIn the July issue of Healthcare Tech Outlook, Third Rock has been recognized as one of the nation’s Top 20 Most Promising Healthcare Compliance Providers for 2015!  “We are very excited and proud to be independently recognized by Healthcare Tech Outlook.  Our hard work to deliver affordable advanced cyber security and comprehensive HIPAA compliance has been very well received by our c ...

Cybersecurity Insurance – Will it pay when I get breached?

As a disclaimer, we are not an insurance company or insurance specialist.  We're a Cyber-Security firm that specializes in HIPAA compliance.  We strongly encourage our clients to purchase cyber-breach insurance.  We regularly blog on healthcare cyber security and compliance, often citing cyber-breach statistics.  It's likely you've been breached or will be breached in the near future.  So, it only makes good business sense to protect the investment you've made building your practice and transfer all ...

My EMR protects my ePHI, right? WRONG!

False Faith in your EMR/EHR It seems most doctors, practice managers, healthcare compliance officers and healthcare security officers put way too much faith in their EMR/EHR.  They think the EMR encrypts the data and therefore it’s secure and no more worries.  That’s a BIG mistake for the following reasons.Many EMRs do NOT encrypt the data in transit, on the local disk (cache) and/or do NOT auto timeout users. Leaving the ePHI available for easy cyber theft. Access controls are only as good as ...

HIPAA/HITECH, Is your practice compliant?

The new HIPAA/HITECH law has been in force for over two years.  However, most healthcare providers have yet to start addressing the new requirements.  It’s a daunting task for a risk assessment expert, professional project manager or even a CCO, CIO or COO, much less a practice manager.  There are various reasons for the delay: confusion, misinformation, cost and time.One of the most common sources of misinformation we've encountered in our clients is a belief that they are already in compliance!  ...

HIPAA Self-Assessment Validity

HIPAA Risk Assessment: Third party vs self-assessment Although the U.S. government allows healthcare providers under $5 million in annual revenue to perform a risk assessment themselves as part of the HIPAA requirements, is it a good idea?  The alternative is to pay an independent third party to perform the risk assessment.Many consider the Risk Assessment a necessary evil to avoid potential HIPAA fines.  It is important to remember the fundamental intent of HIPAA; protect the patient’s data, maint ...

HIPAA: Get off Windows XP Now! Seriously!

Ok, HEALTHCARE world, you have GOT to get with the program and MOVE forward.  We continue to go into healthcare providers of all kinds; hospitals, clinics, doctors, dentist, optometrist, dermatologist, etc and find these old, slow, archaic systems running Windows XP.  Here are a few reasons why you should PULL THE PLUG on Windows XP.Reasons to part ways with Windows XPNo longer officially supported by Microsoft. If you want any support, be prepared to open your wallet in a big way. Has know ...

29 Million Health Records Exposed in 4 Years

If you had any shred of doubt that health care data breaches are a legitimate and major problem, those doubts have been laid to rest. Medical researchers published a study (link) showing that an astounding 29.1 million health records were compromised between 2010 and 2013.That DOES NOT INCLUDE the major breaches in 2014 and early 2015!!The majority of them (58%) were exposed through theft, but the rest were through hacks and un-authorized access.Providers are not happy, as seen in the opinion pi ...

Worry-Free Compliance with Secure (Encrypted) Email

HITECH has added new requirements to the HIPAA regulations, one of which is encrypted email when sending or receiving PHI.  It’s important for healthcare providers to understand email is NOT secure, encrypted or safe for sending sensitive information.  It is easily intercepted and read by others, which is likely cyber criminals.  To protect information being sent via email a modified email service must be used.  There have been encrypted email solutions for years and Microsoft Office 365 and other clo ...

Third Rock Introduces Comprehensive HIPAA / HITECH Compliance Solution

Round Rock, Tx, Dec. 03, 2014 – Third Rock, a business technology consulting firm  focused on improving operational performance through effective and efficient compliance, has taken decades of security and enterprise experience and created a stream-lined, affordable HIPAA /  HITECH compliance solution that small and medium businesses can afford.Third Rock’s Worry-Free ComplianceTM provides all of the required elements to meet current HIPAA / HITECH requirements.  Included is continuous network se ...

1 2 3 4